Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Chrome won't load anything


  • Please log in to reply
No replies to this topic

#1 Ktownpr

Ktownpr

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:03:23 AM

Posted 05 November 2010 - 04:42 PM

I'm trying to get chrome to work on this computer because FF keeps giving me problems. I don't use this desktop too often but when I do it's always got something wrong with it. I've gone through and cleaned viruses off it before and had to reformat. BUt. I don't know what to do to make it work correctly. Everytime I open FF it gives me an adobe plus alert (can't get rid of that), and I tried to get Chrome because it's so much better than FF but it won't open ANY webpages. I downloaded GMER so.... What now?


GMER 1.0.15.15507 - http://www.gmer.net
Rootkit scan 2010-11-05 17:42:34
Windows 5.1.2600 Service Pack 3
Running: 9h303jrr.exe; Driver: C:\DOCUME~1\OWNER~1.BOL\LOCALS~1\Temp\axtdqpow.sys


---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwCallbackReturn + 2D50 805045EC 4 Bytes CALL 995ACC1F

---- User code sections - GMER 1.0.15 ----

.text C:\WINDOWS\system32\winlogon.exe[768] kernel32.dll!ExitProcess 7C81CB12 5 Bytes JMP 10005440 C:\WINDOWS\system32\nickey.dll
.text C:\WINDOWS\system32\winlogon.exe[768] Secur32.dll!LsaLogonUser 77FE33F1 5 Bytes JMP 100053D2 C:\WINDOWS\system32\nickey.dll
.text C:\WINDOWS\system32\winlogon.exe[768] USER32.dll!SendMessageW 7E42929A 5 Bytes JMP 1000BFF4 C:\WINDOWS\system32\nickey.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\ehome\ehtray.exe[1344] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\runonce.exe[1384] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\Explorer.EXE[1728] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\hkcmd.exe[2136] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe[2164] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\igfxtray.exe[2176] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe[2520] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Symantec Shared\ccApp.exe[2588] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\QuickTime\QTTask.exe[2616] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[2676] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\system32\ctfmon.exe[2836] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\Documents and Settings\Owner.Bolan\Desktop\9h303jrr.exe[2860] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe[3020] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!CreateProcessW 7C802336 5 Bytes JMP 1006D177 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!CreateProcessA 7C80236B 5 Bytes JMP 1006CF1F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1003B4D9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!CreateFileW 7C810800 5 Bytes JMP 1003B059 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 1003B26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!MoveFileWithProgressW 7C81F72E 5 Bytes JMP 1003BB0F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!MoveFileW 7C821261 5 Bytes JMP 1003BA28 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!CopyFileExW 7C827B32 7 Bytes JMP 1003BBFF C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!CopyFileW 7C82F87B 5 Bytes JMP 1003BDA0 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] kernel32.dll!DeleteFileW 7C831F63 5 Bytes JMP 1003B6F2 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!DispatchMessageW 7E418A01 5 Bytes JMP 100633ED C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!TranslateMessage 7E418BF6 5 Bytes JMP 100633AB C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!GetMessageW 7E4191C6 5 Bytes JMP 10063471 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!PeekMessageW 7E41929B 5 Bytes JMP 10063507 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!DispatchMessageA 7E4196B8 5 Bytes JMP 1006342F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!IsDialogMessageW 7E427424 5 Bytes JMP 10063321 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!GetMessageA 7E42772B 5 Bytes JMP 100634BC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!PeekMessageA 7E42A340 5 Bytes JMP 1006355B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] USER32.dll!IsDialogMessage 7E43C689 5 Bytes JMP 10063366 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] ADVAPI32.dll!CreateProcessAsUserW 77DEA8A9 5 Bytes JMP 1006D5E6 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] ADVAPI32.dll!CreateProcessAsUserA 77E10CE8 5 Bytes JMP 1006D38B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] ADVAPI32.dll!CreateProcessWithLogonW 77E15FFD 5 Bytes JMP 1006D7FD C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!sendto 71AB2F51 5 Bytes JMP 1007CE44 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!recvfrom 71AB2FF7 5 Bytes JMP 1007D0A9 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 1007D26F C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 1007CB66 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!send 71AB4C27 5 Bytes JMP 1007CCAC C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!WSARecv 71AB4CB5 5 Bytes JMP 1007F089 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!recv 71AB676F 5 Bytes JMP 1007D00C C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!WSASend 71AB68FA 5 Bytes JMP 1007CD4B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!WSARecvFrom 71ABF66A 5 Bytes JMP 1007D15B C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!WSASendTo 71AC0AAD 5 Bytes JMP 1007CEF8 C:\WINDOWS\system32\machex32.dll
.text C:\WINDOWS\eHome\ehmsas.exe[3996] WS2_32.dll!WSAConnect 71AC0C81 5 Bytes JMP 1007CBFD C:\WINDOWS\system32\machex32.dll

---- EOF - GMER 1.0.15 ----

Edit: Moved topic from Web Browsing/Email and Other Internet Applications to the more appropriate forum. ~ Animal

BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users