Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Codec-C UnInstall - Lost programs from Start Menu


  • Please log in to reply
8 replies to this topic

#1 Pashmino

Pashmino

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 02 April 2012 - 07:37 AM

I installed "Codec-C" for watching a video, and now I saw that my Start Menu dissapeared, all gone.

I can acces the programms from the desktop, so they arent deleted.

Tried to uninstall the Codec, but i can't, also used Malwarebytes and found a Trojan, that I deleted.

Any advice appreciated ^^

Edited by hamluis, 02 April 2012 - 08:40 AM.
No logs, moved from Malware Removal Logs to Am I Infected.


BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:13 AM

Posted 06 April 2012 - 03:18 PM

Can you post the log for Malwarebytes and perform the following:

Hello,

And welcome to BleepingComputer.com, before we can assist you with your question of: Am I infected? You will need to perform the following tasks and post the logs of each if you can. If you have performed any of the scans below post the logs for those scans, and then perform the ones you have not done.

Please download and run Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.


SUPERAntiSpyware:

Please download and scan with SUPERAntiSpyware Free

  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are unchecked (leave all others checked):
    • Ignore files larger then 4mb
    • Ignore non-executable files

    Now Perform the scan with SUPERAntiSpyware as follows:
    • Launch the program and back on the main screen, under "Scan for Harmful Software" click Scan your computer.
    • On the left, make sure you check C:\Fixed Drive.
    • On the right, under "Complete Scan", choose Perform Complete Scan and click "Next".
    • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
    • Make sure everything has a checkmark next to it and click "Next".
    • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
    • If asked if you want to reboot, click "Yes" and reboot normally.
    • To retrieve the removal information after reboot, launch SUPERAntispyware again.[list]
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.

SAS Portable
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.


Now GMER

GMER does not work in 64bit Mode!!!!!!

Please download GMER from one of the following locations and save it to your desktop:

  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning
.


All scans above should be performed in regular boot mode, and if that is not possible then I will post instructions in a follow up reply on how to get into Safe Mode to perform the scans. Also all scans should be COMPLETE and not quick unless specifically instructed to do so.

#3 Pashmino

Pashmino
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 08 April 2012 - 06:24 AM

Hi, thanks for your help.

This is the Malwarebytes log (I think):

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Versión de la Base de Datos: v2012.03.27.08

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Juan :: JUAN-PC [administrador]

28/03/2012 1:01:27
mbam-log-2012-03-28 (01-01-27).txt

Tipos de Análisis: Análisis Completo
Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opciones de análisis desactivados: P2P
Objetos examinados: 635695
Tiempo transcurrido: 2 hora(s), 49 minuto(s), 46 segundo(s)

Procesos en Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Módulos de Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Claves del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Valores del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Elementos de Datos del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Carpetas Detectadas: 0
(No se han detectado elementos maliciosos)

Archivos Detectados: 1
C:\Program Files\Steam\steamapps\common\bunch of heroes\keyconfig.exe (Trojan.FakeMSGen) -> En cuarentena y eliminado con éxito.

fin)

This one the SecurityCheck Log:

Results of screen317's Security Check version 0.99.32
Windows 7 Service Pack 1 x86 (UAC is enabled)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

avast! Free Antivirus
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Sophos Anti-Rootkit 1.5.20
Java™ 7 Update 2
Adobe Flash Player 11.2.202.228
Adobe Reader X (10.1.2)
Mozilla Firefox (11.0.)
````````````````````````````````
Process Check:
objlist.exe by Laurent

AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
``````````End of Log````````````


This one is the SUPERAntiSpyware Log:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 04/07/2012 at 08:15 PM

Application Version : 5.0.1146

Core Rules Database Version : 8424
Trace Rules Database Version: 6236

Scan type : Complete Scan
Total Scan Time : 01:13:21

Operating System Information
Windows 7 Home Premium 32-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned : 642
Memory threats detected : 0
Registry items scanned : 37835
Registry threats detected : 0
File items scanned : 149439
File threats detected : 296

Adware.Tracking Cookie
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\XGZ4UK0K.txt [ /ru4.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\NPHAN6AR.txt [ /media6degrees.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\HF3PKRPQ.txt [ /bs.serving-sys.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\O37TW4DU.txt [ /internity.solution.weborama.fr ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\TMCOR3GY.txt [ /atdmt.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\P0E7VWIT.txt [ /smartadserver.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\MP92RC0X.txt [ /weborama.fr ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\CBOL85OD.txt [ /invitemedia.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\JMRF41H6.txt [ /serving-sys.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\9Z91AWDC.txt [ /tradedoubler.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\F1RM5ELD.txt [ /doubleclick.net ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\KKOO4JK5.txt [ /microsoftwllivemkt.112.2o7.net ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\DVWMMLQ9.txt [ /questionmarket.com ]
C:\Users\Juan\AppData\Roaming\Microsoft\Windows\Cookies\Z4TLK4DQ.txt [ /lucidmedia.com ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\D14IRFWD.txt [ Cookie:juan@ru4.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\UGK50VLV.txt [ Cookie:juan@adxpansion.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\QQGQHR0U.txt [ Cookie:juan@horyzon-media.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\U1Q6YNMP.txt [ Cookie:juan@www.pixeltrack66.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\G27EZSW3.txt [ Cookie:juan@histats.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\2PA0KNFE.txt [ Cookie:juan@exoclick.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\756KQH0Q.txt [ Cookie:juan@fastclick.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZCEBSCF7.txt [ Cookie:juan@pro-market.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\JZP360SY.txt [ Cookie:juan@adserver.acens.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\OVCK1JH9.txt [ Cookie:juan@xiti.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\6T6I7T95.txt [ Cookie:juan@tube1sex.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZB1VQZN0.txt [ Cookie:juan@digital.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\Q61SDIK2.txt [ Cookie:juan@aimfares.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\E595H0OS.txt [ Cookie:juan@pokemon-stats.com/foros ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\HDVPSXA6.txt [ Cookie:juan@statcounter.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\UNX0H1KZ.txt [ Cookie:juan@airfrance.front.bannerfactory.ecritel.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\V7Y4NIS7.txt [ Cookie:juan@mediaplex.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\T2WJUV40.txt [ Cookie:juan@bs.serving-sys.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\80IMJ6OQ.txt [ Cookie:juan@aimfar.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\L3J0J2L6.txt [ Cookie:juan@adxpose.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\LAT1YNW6.txt [ Cookie:juan@yieldmanager.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\YCI31VH9.txt [ Cookie:juan@da-tracking.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\9RPROWJ4.txt [ Cookie:juan@udima.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\UU8LLY5I.txt [ Cookie:juan@publicidad.vagos.es/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\UKED4PT9.txt [ Cookie:juan@fortunecity.es/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\IRF90JXF.txt [ Cookie:juan@pokemon-stats.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\YZRLRI6E.txt [ Cookie:juan@uoc.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\5E5HRZL2.txt [ Cookie:juan@mitelecuentagrupo.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\F26JOSBE.txt [ Cookie:juan@harrenmedianetwork.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\H7524FS1.txt [ Cookie:juan@www.adserving.pixfuture.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\K4OF5RYI.txt [ Cookie:juan@cuatro.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\F5IJ4FBG.txt [ Cookie:juan@msnportal.112.2o7.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\EF0Z9UII.txt [ Cookie:juan@jazztelespaa.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\2U6QPV1G.txt [ Cookie:juan@smartadserver.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\1PCFB98W.txt [ Cookie:juan@www2.smartadserver.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\H6K83303.txt [ Cookie:juan@adserver.adtechus.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\FWO2PJQR.txt [ Cookie:juan@at.atwola.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\IX4EEM22.txt [ Cookie:juan@ad.adserver01.de/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\U4V6L9QL.txt [ Cookie:juan@zanox.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\VSL4YX7P.txt [ Cookie:juan@weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\G770AFPV.txt [ Cookie:juan@www.argentinawarez.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\MYMY97HC.txt [ Cookie:juan@mm.chitika.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZGUEJ2QG.txt [ Cookie:juan@advertising.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\KAE5VYPL.txt [ Cookie:juan@toplist.sk/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\IADM67QT.txt [ Cookie:juan@casalemedia.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\PSQD91Q4.txt [ Cookie:juan@interclick.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\LSXDSHV8.txt [ Cookie:juan@dominospizza.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\FHKITMTF.txt [ Cookie:juan@fl01.ct2.comclick.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\0HXVXH3K.txt [ Cookie:juan@revsci.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\SBCZGTIH.txt [ Cookie:juan@h.atdmt.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\5WAOY9U1.txt [ Cookie:juan@lfstmedia.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\4XWKOYA5.txt [ Cookie:juan@doubleclick.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\PKJHYPSQ.txt [ Cookie:juan@imrworldwide.com/cgi-bin ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\VDFYI6IM.txt [ Cookie:juan@apmebf.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\KYTP5UNX.txt [ Cookie:juan@c.atdmt.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\MTOUY0QK.txt [ Cookie:juan@zedo.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\X3V7G20Q.txt [ Cookie:juan@lucidmedia.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\E2XIPWWT.txt [ Cookie:juan@telecinco.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\M4703SAU.txt [ Cookie:juan@adtech.de/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\N7O626W4.txt [ Cookie:juan@adperfpublisher.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\JBBTYMES.txt [ Cookie:juan@adserver.atrapalo.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\FN09KMTT.txt [ Cookie:juan@m1.webstats.motigo.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\5FZNYIRB.txt [ Cookie:juan@ads.crakmedia.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\PSBKUO7D.txt [ Cookie:juan@fidelity.rotator.hadj7.adjuggler.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\0ARG7QDA.txt [ Cookie:juan@track.adform.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\XZYPPOPA.txt [ Cookie:juan@ads.pointroll.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\FXBDDXXL.txt [ Cookie:juan@banners.killtro.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\WHNP2FUZ.txt [ Cookie:juan@media6degrees.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\DBB25CUI.txt [ Cookie:juan@c1.atdmt.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\24FQMB2K.txt [ Cookie:juan@trafficholder.com/cgi-bin/traffic/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\9S2SIK2R.txt [ Cookie:juan@stats.ilivid.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\9L7RXNEH.txt [ Cookie:juan@argentinawarez.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\MOF5CJL2.txt [ Cookie:juan@lexuscars.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\0N3NI252.txt [ Cookie:juan@www3.addfreestats.com/cgi-bin ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\W7O1GH7F.txt [ Cookie:juan@clicksor.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\B04ROWOD.txt [ Cookie:juan@amazon-adsystem.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\401PSLAL.txt [ Cookie:juan@prisacom.112.2o7.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\DN3NDC21.txt [ Cookie:juan@optimize.indieclick.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\45OJL6ZU.txt [ Cookie:juan@heineken.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\3OIE1S1X.txt [ Cookie:juan@ibanesto2.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\NLDOWUZ6.txt [ Cookie:juan@ecisanvalentin.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\14N5HJWR.txt [ Cookie:juan@overture.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\38LRT6P8.txt [ Cookie:juan@account.frogster-online.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\2S8PDXUZ.txt [ Cookie:juan@adsonar.com/adserving ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\1KTU4J9N.txt [ Cookie:juan@tacoda.at.atwola.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\XBM8CG6M.txt [ Cookie:juan@invitemedia.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\M439TJDQ.txt [ Cookie:juan@kontera.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\1QTV1SL8.txt [ Cookie:juan@www.ypmadserver.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\9L61ERY1.txt [ Cookie:juan@tns-counter.ru/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\CKXIWX08.txt [ Cookie:juan@specificclick.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\U6KLUMA6.txt [ Cookie:juan@adinterax.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\CGJX571T.txt [ Cookie:juan@indieclick.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\98WK0VV4.txt [ Cookie:juan@myroitracking.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\AYYYES1V.txt [ Cookie:juan@www.directadvert.ru/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\QVRUZ664.txt [ Cookie:juan@mapfrespain.122.2o7.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ND11E9XU.txt [ Cookie:juan@in.getclicky.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\DAXJZNQ2.txt [ Cookie:juan@blog.counter-strike.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ADSHC46H.txt [ Cookie:juan@track.effiliation.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\WSSE3K2Y.txt [ Cookie:juan@wmedia.rotator.hadj7.adjuggler.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\C3W1MO7Z.txt [ Cookie:juan@adfarm1.adition.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\6FQPS4MA.txt [ Cookie:juan@warez.programasfull.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\6O13F8NJ.txt [ Cookie:juan@tracking.gameforge.de/track/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\WK2DH6Q4.txt [ Cookie:juan@adform.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\3ECZOTUR.txt [ Cookie:juan@www.fortunecity.es/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\6P2M0EEM.txt [ Cookie:juan@yadro.ru/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\VYP78G80.txt [ Cookie:juan@track.webgains.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\CV55NRS7.txt [ Cookie:juan@wrigleyes.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\SARSGRKI.txt [ Cookie:juan@safe-es.imrworldwide.com/cgi-bin/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\PXI2XQJ7.txt [ Cookie:juan@bancofinancieroydeahorros.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\T133HREN.txt [ Cookie:juan@googleads.g.doubleclick.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZQQOMJT9.txt [ Cookie:juan@www.trafficjmp.com/conversion ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\EXWYO7FR.txt [ Cookie:juan@uk.sitestat.com/future/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\0JZG3T3F.txt [ Cookie:juan@imagevenue.advertserve.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\P3C9HKF9.txt [ Cookie:juan@www.counter-strike.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\I08HAM2T.txt [ Cookie:juan@campofrio.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\TO2U7XBD.txt [ Cookie:juan@megacrack.es/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\54EDV1CN.txt [ Cookie:juan@tonytonychopper.xxxblog.jp/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\17QMTSI1.txt [ Cookie:juan@internity.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\54FFU0VF.txt [ Cookie:juan@2o7.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\WFT5ACNX.txt [ Cookie:juan@mediacontactses.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\H1RHP55K.txt [ Cookie:juan@tracking.publicidees.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\NAJUM43P.txt [ Cookie:juan@nestles.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ONQSLKIA.txt [ Cookie:juan@statse.webtrendslive.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\R6CJHKKO.txt [ Cookie:juan@ox-d.adnetxchange.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\3MSRP8VB.txt [ Cookie:juan@solvemedia.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\4E5KH6LB.txt [ Cookie:juan@eas21.emediate.eu/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\2KUHI9UI.txt [ Cookie:juan@burstnet.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\VV7L3YZF.txt [ Cookie:juan@lanairlines.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\430F9IHM.txt [ Cookie:juan@pointroll.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\2ITEDWJT.txt [ Cookie:juan@adserver2.gamerpublishing.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\SZD6P6QP.txt [ Cookie:juan@7.rotator.wigetmedia.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\LX19I7KO.txt [ Cookie:juan@collective-media.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\X3Z8O4G6.txt [ Cookie:juan@serving-sys.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\EV7DL8A7.txt [ Cookie:juan@micklemedia.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\0HMM8NW5.txt [ Cookie:juan@eas.apm.emediate.eu/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\FSVKVMZH.txt [ Cookie:juan@mediavida.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\6SC6JKRG.txt [ Cookie:juan@linksynergy.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\2C26PP93.txt [ Cookie:juan@mtvn.112.2o7.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\KFH3LCHI.txt [ Cookie:juan@www.etracker.de/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\H534KJ34.txt [ Cookie:juan@c.gigcount.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\3RWF1JID.txt [ Cookie:juan@toyotaes2.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\IB191EIS.txt [ Cookie:juan@questionmarket.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\4ZE3PTCP.txt [ Cookie:juan@adserver.hipertextual.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\0QRUL767.txt [ Cookie:juan@ads2.zeusclicks.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\CYZ4565N.txt [ Cookie:juan@www.googleadservices.com/pagead/conversion/974916782/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\TLFOO9NN.txt [ Cookie:juan@ecidiadelpadre.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\T5CBRX64.txt [ Cookie:juan@ilead.itrack.it/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\1VYDE8OW.txt [ Cookie:juan@uk.at.atwola.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\EI4H42KG.txt [ Cookie:juan@telepizzaes.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\8P0B1QH9.txt [ Cookie:juan@adviva.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\96TNLRZZ.txt [ Cookie:juan@lorealespaa.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\7KIIFCY2.txt [ Cookie:juan@warnerbrosads.112.2o7.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\01Y485OC.txt [ Cookie:juan@ar.atwola.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\FO8E7LL0.txt [ Cookie:juan@tribalfusion.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\A998SV5T.txt [ Cookie:juan@uk.sitestat.com/future/pcgamer/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\PF7CJ15U.txt [ Cookie:juan@segainc.112.2o7.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\2HXG2Z1L.txt [ Cookie:juan@adlegend.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\EVJY2NVO.txt [ Cookie:juan@myaccount.internationalservicecheck.com/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\GZ7A8V6A.txt [ Cookie:juan@lineadirectaes2.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\IBPG6B8Y.txt [ Cookie:juan@marypaz.solution.weborama.fr/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZUT21IYX.txt [ Cookie:juan@yellspain.112.2o7.net/ ]
C:\USERS\JUAN\AppData\Roaming\Microsoft\Windows\Cookies\Low\8EO8FSF2.txt [ Cookie:juan@grupogod.112.2o7.net/ ]
C:\USERS\JUAN\Cookies\XGZ4UK0K.txt [ Cookie:juan@ru4.com/ ]
C:\USERS\JUAN\Cookies\NPHAN6AR.txt [ Cookie:juan@media6degrees.com/ ]
C:\USERS\JUAN\Cookies\HF3PKRPQ.txt [ Cookie:juan@bs.serving-sys.com/ ]
C:\USERS\JUAN\Cookies\O37TW4DU.txt [ Cookie:juan@internity.solution.weborama.fr/ ]
C:\USERS\JUAN\Cookies\P0E7VWIT.txt [ Cookie:juan@smartadserver.com/ ]
C:\USERS\JUAN\Cookies\MP92RC0X.txt [ Cookie:juan@weborama.fr/ ]
C:\USERS\JUAN\Cookies\CBOL85OD.txt [ Cookie:juan@invitemedia.com/ ]
C:\USERS\JUAN\Cookies\JMRF41H6.txt [ Cookie:juan@serving-sys.com/ ]
C:\USERS\JUAN\Cookies\F1RM5ELD.txt [ Cookie:juan@doubleclick.net/ ]
C:\USERS\JUAN\Cookies\KKOO4JK5.txt [ Cookie:juan@microsoftwllivemkt.112.2o7.net/ ]
C:\USERS\JUAN\Cookies\DVWMMLQ9.txt [ Cookie:juan@questionmarket.com/ ]
C:\USERS\JUAN\Cookies\Z4TLK4DQ.txt [ Cookie:juan@lucidmedia.com/ ]
assets.porn.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
cdn1.image.freeporn.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
cdn1.static.pornhub.phncdn.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
cdn1.static1.pornrabbit.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
ec.atdmt.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
es.pornhub.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
files.youporn.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
h2porn.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
ia.media-imdb.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
media.mtvnservices.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
media.mysofa.es [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
media1.shufuni.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
secure-uk.imrworldwide.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
secure-us.imrworldwide.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
stat.easydate.biz [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
stat.ed.cupidplc.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
staticedge.hardsextube.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
track.webgains.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
tuporno.tv [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
www.99counters.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
www.alphaporno.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
www.gfssex.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
www.pornhub.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
www.porntube.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]
wwwstatic.megaporn.com [ C:\USERS\JUAN\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\C3HRV7FG ]



#4 Pashmino

Pashmino
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 08 April 2012 - 06:26 AM

And this Log is from GMER (It's too long, i can't post it in one post):

[quote]GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-04-08 13:08:22
Windows 6.1.7601 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 ST31000528AS rev.CC44
Running: 94doe8yc.exe; Driver: C:\Users\Juan\AppData\Local\Temp\pwldypog.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwAddBootEntry [0x90AA2DF8]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwAllocateVirtualMemory [0x9423FA5A]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwAssignProcessToJobObject [0x90AA385E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEvent [0x90AA82E4]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEventPair [0x90AA8330]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateIoCompletion [0x90AA8422]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateMutant [0x90AA8252]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateSection [0x90AA8374]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateSemaphore [0x90AA829A]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateTimer [0x90AA83DC]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteBootEntry [0x90AA2E44]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwFreeVirtualMemory [0x9423FB34]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwLoadDriver [0x90AA2AD6]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwModifyBootEntry [0x90AA2E90]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeKey [0x90AA5D1C]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeMultipleKeys [0x90AA3B02]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEvent [0x90AA830E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEventPair [0x90AA8352]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenIoCompletion [0x90AA8446]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenMutant [0x90AA8278]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSection [0x90AA83AE]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSemaphore [0x90AA82C2]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenTimer [0x90AA8400]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwProtectVirtualMemory [0x9423FCA0]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryObject [0x90AA39CE]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootEntryOrder [0x90AA2EDC]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootOptions [0x90AA2F28]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemInformation [0x90AA2B46]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemPowerState [0x90AA2CEA]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwShutdownSystem [0x90AA2C92]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSystemDebugControl [0x90AA2D5A]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwTerminateProcess [0x9423FD60]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwVdmControl [0x90AA2F74]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwWriteVirtualMemory [0x9423FBE0]

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0x94255D92]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwSaveKey + 13C1 8304C3D9 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 83085D52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text ntkrnlpa.exe!KeRemoveQueueEx + 10CB 8308CDC0 4 Bytes [F8, 2D, AA, 90]
.text ntkrnlpa.exe!KeRemoveQueueEx + 10F3 8308CDE8 2 Bytes [5A, FA] {POP EDX; CLI }
.text ntkrnlpa.exe!KeRemoveQueueEx + 10F6 8308CDEB 1 Byte [94]
.text ntkrnlpa.exe!KeRemoveQueueEx + 1153 8308CE48 4 Bytes [5E, 38, AA, 90]
.text ntkrnlpa.exe!KeRemoveQueueEx + 11A7 8308CE9C 8 Bytes [E4, 82, AA, 90, 30, 83, AA, ...]
.text ...
PAGE ntkrnlpa.exe!ObMakeTemporaryObject 83219C30 5 Bytes JMP 94252C8C \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ObInsertObject + 27 83232250 5 Bytes JMP 94254764 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ZwReplyWaitReceivePortEx + 108 83247397 4 Bytes CALL 90AA41B5 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
PAGE ntkrnlpa.exe!ZwAlpcSendWaitReceivePort + 122 832611A0 4 Bytes CALL 90AA41CB \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
PAGE ntkrnlpa.exe!ZwCreateProcessEx 832EB078 7 Bytes JMP 94255D96 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
.text kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\SUPERAntiSpyware\SASCORE.EXE[152] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Program Files\SUPERAntiSpyware\SASCORE.EXE[152] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Program Files\SUPERAntiSpyware\SASCORE.EXE[152] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\SUPERAntiSpyware\SASCORE.EXE[152] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 000F0A08
.text C:\Program Files\SUPERAntiSpyware\SASCORE.EXE[152] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000F03FC
.text C:\Program Files\SUPERAntiSpyware\SASCORE.EXE[152] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 000F0804
.text C:\Program Files\SUPERAntiSpyware\SASCORE.EXE[152] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000F01F8
.text C:\Program Files\SUPERAntiSpyware\SASCORE.EXE[152] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 000F0600
.text C:\Windows\System32\svchost.exe[460] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\System32\svchost.exe[460] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\System32\svchost.exe[460] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\System32\svchost.exe[460] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 001B0A08
.text C:\Windows\System32\svchost.exe[460] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001B03FC
.text C:\Windows\System32\svchost.exe[460] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 001B0804
.text C:\Windows\System32\svchost.exe[460] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001B01F8
.text C:\Windows\System32\svchost.exe[460] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 001B0600
.text C:\Windows\system32\csrss.exe[464] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[472] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000703FC
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[472] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000701F8
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[472] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[472] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00200A08
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[472] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 002003FC
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[472] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00200804
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[472] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 002001F8
.text C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe[472] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00200600
.text C:\Windows\system32\wininit.exe[564] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000303FC
.text C:\Windows\system32\wininit.exe[564] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000301F8
.text C:\Windows\system32\wininit.exe[564] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\wininit.exe[564] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 000C0A08
.text C:\Windows\system32\wininit.exe[564] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000C03FC
.text C:\Windows\system32\wininit.exe[564] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 000C0804
.text C:\Windows\system32\wininit.exe[564] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000C01F8
.text C:\Windows\system32\wininit.exe[564] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 000C0600
.text C:\Windows\system32\csrss.exe[572] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\services.exe[612] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\services.exe[612] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\services.exe[612] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\winlogon.exe[652] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000303FC
.text C:\Windows\system32\winlogon.exe[652] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000301F8
.text C:\Windows\system32\winlogon.exe[652] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\winlogon.exe[652] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 000C0A08
.text C:\Windows\system32\winlogon.exe[652] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000C03FC
.text C:\Windows\system32\winlogon.exe[652] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 000C0804
.text C:\Windows\system32\winlogon.exe[652] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000C01F8
.text C:\Windows\system32\winlogon.exe[652] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 000C0600
.text C:\Windows\system32\lsass.exe[680] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\lsass.exe[680] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\lsass.exe[680] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\lsass.exe[680] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 000C0A08
.text C:\Windows\system32\lsass.exe[680] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000C03FC
.text C:\Windows\system32\lsass.exe[680] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 000C0804
.text C:\Windows\system32\lsass.exe[680] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000C01F8
.text C:\Windows\system32\lsass.exe[680] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 000C0600
.text C:\Windows\system32\lsm.exe[688] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\lsm.exe[688] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\lsm.exe[688] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\svchost.exe[792] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000A03FC
.text C:\Windows\system32\svchost.exe[792] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000A01F8
.text C:\Windows\system32\svchost.exe[792] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\nvvsvc.exe[872] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001603FC
.text C:\Windows\system32\nvvsvc.exe[872] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001601F8
.text C:\Windows\system32\nvvsvc.exe[872] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\nvvsvc.exe[872] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 002F0A08
.text C:\Windows\system32\nvvsvc.exe[872] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 002F03FC
.text C:\Windows\system32\nvvsvc.exe[872] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 002F0804
.text C:\Windows\system32\nvvsvc.exe[872] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 002F01F8
.text C:\Windows\system32\nvvsvc.exe[872] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 002F0600
.text C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[896] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001503FC
.text C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[896] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001501F8
.text C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[896] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[896] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 001F0A08
.text C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[896] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001F03FC
.text C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[896] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 001F0804
.text C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[896] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001F01F8
.text C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[896] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 001F0600
.text C:\Windows\system32\svchost.exe[940] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\svchost.exe[940] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\svchost.exe[940] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\System32\svchost.exe[1040] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\System32\svchost.exe[1040] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\System32\svchost.exe[1040] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\System32\svchost.exe[1040] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 008F0A08
.text C:\Windows\System32\svchost.exe[1040] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 008F03FC
.text C:\Windows\System32\svchost.exe[1040] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 008F0804
.text C:\Windows\System32\svchost.exe[1040] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 008F01F8
.text C:\Windows\System32\svchost.exe[1040] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 008F0600
.text C:\Windows\System32\svchost.exe[1076] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\System32\svchost.exe[1076] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\System32\svchost.exe[1076] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\System32\svchost.exe[1076] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00960A08
.text C:\Windows\System32\svchost.exe[1076] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 009603FC
.text C:\Windows\System32\svchost.exe[1076] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00960804
.text C:\Windows\System32\svchost.exe[1076] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 009601F8
.text C:\Windows\System32\svchost.exe[1076] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00960600
.text C:\Windows\system32\svchost.exe[1104] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\svchost.exe[1104] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\svchost.exe[1104] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\svchost.exe[1104] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00A20A08
.text C:\Windows\system32\svchost.exe[1104] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 00A203FC
.text C:\Windows\system32\svchost.exe[1104] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00A20804
.text C:\Windows\system32\svchost.exe[1104] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 00A201F8
.text C:\Windows\system32\svchost.exe[1104] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00A20600
.text C:\Windows\system32\svchost.exe[1132] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000A03FC
.text C:\Windows\system32\svchost.exe[1132] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000A01F8
.text C:\Windows\system32\svchost.exe[1132] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\svchost.exe[1132] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00410A08
.text C:\Windows\system32\svchost.exe[1132] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 004103FC
.text C:\Windows\system32\svchost.exe[1132] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00410804
.text C:\Windows\system32\svchost.exe[1132] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 004101F8
.text C:\Windows\system32\svchost.exe[1132] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00410600
.text C:\Windows\system32\svchost.exe[1216] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\svchost.exe[1216] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\svchost.exe[1216] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\svchost.exe[1216] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00A30A08
.text C:\Windows\system32\svchost.exe[1216] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 00A303FC
.text C:\Windows\system32\svchost.exe[1216] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00A30804
.text C:\Windows\system32\svchost.exe[1216] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 00A301F8
.text C:\Windows\system32\svchost.exe[1216] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00A30600
.text C:\Windows\system32\svchost.exe[1324] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\svchost.exe[1324] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\svchost.exe[1324] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\LogMeIn Hamachi\hamachi-2.exe[1348] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001603FC
.text C:\Program Files\LogMeIn Hamachi\hamachi-2.exe[1348] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001601F8
.text C:\Program Files\LogMeIn Hamachi\hamachi-2.exe[1348] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\LogMeIn Hamachi\hamachi-2.exe[1348] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 001F0A08
.text C:\Program Files\LogMeIn Hamachi\hamachi-2.exe[1348] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001F03FC
.text C:\Program Files\LogMeIn Hamachi\hamachi-2.exe[1348] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 001F0804
.text C:\Program Files\LogMeIn Hamachi\hamachi-2.exe[1348] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001F01F8
.text C:\Program Files\LogMeIn Hamachi\hamachi-2.exe[1348] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 001F0600
.text C:\Program Files\AVAST Software\Avast\AvastSvc.exe[1456] kernel32.dll!SetUnhandledExceptionFilter 7633F4FB 4 Bytes [C2, 04, 00, 90] {RET 0x4; NOP }
.text C:\Program Files\AVAST Software\Avast\AvastSvc.exe[1456] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\Dwm.exe[1484] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\Dwm.exe[1484] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\Dwm.exe[1484] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\Dwm.exe[1484] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 000F0A08
.text C:\Windows\system32\Dwm.exe[1484] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000F03FC
.text C:\Windows\system32\Dwm.exe[1484] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 000F0804
.text C:\Windows\system32\Dwm.exe[1484] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000F01F8
.text C:\Windows\system32\Dwm.exe[1484] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 000F0600
.text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1572] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001603FC
.text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1572] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001601F8
.text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1572] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1572] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00180A08
.text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1572] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001803FC
.text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1572] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00180804
.text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1572] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001801F8
.text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1572] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00180600
.text C:\Windows\system32\nvvsvc.exe[1584] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001603FC
.text C:\Windows\system32\nvvsvc.exe[1584] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001601F8
.text C:\Windows\system32\nvvsvc.exe[1584] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\nvvsvc.exe[1584] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 001F0A08
.text C:\Windows\system32\nvvsvc.exe[1584] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001F03FC
.text C:\Windows\system32\nvvsvc.exe[1584] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 001F0804
.text C:\Windows\system32\nvvsvc.exe[1584] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001F01F8
.text C:\Windows\system32\nvvsvc.exe[1584] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 001F0600
.text C:\Windows\Explorer.EXE[1640] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\Explorer.EXE[1640] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\Explorer.EXE[1640] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\Explorer.EXE[1640] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00110A08
.text C:\Windows\Explorer.EXE[1640] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001103FC
.text C:\Windows\Explorer.EXE[1640] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00110804
.text C:\Windows\Explorer.EXE[1640] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001101F8
.text C:\Windows\Explorer.EXE[1640] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00110600
.text C:\Windows\system32\taskhost.exe[1656] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000503FC
.text C:\Windows\system32\taskhost.exe[1656] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000501F8
.text C:\Windows\system32\taskhost.exe[1656] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\taskhost.exe[1656] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 000E0A08
.text C:\Windows\system32\taskhost.exe[1656] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000E03FC
.text C:\Windows\system32\taskhost.exe[1656] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 000E0804
.text C:\Windows\system32\taskhost.exe[1656] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000E01F8
.text C:\Windows\system32\taskhost.exe[1656] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 000E0600
.text C:\Windows\System32\spoolsv.exe[1840] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\System32\spoolsv.exe[1840] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\System32\spoolsv.exe[1840] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\System32\spoolsv.exe[1840] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00140A08
.text C:\Windows\System32\spoolsv.exe[1840] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001403FC
.text C:\Windows\System32\spoolsv.exe[1840] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00140804
.text C:\Windows\System32\spoolsv.exe[1840] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001401F8
.text C:\Windows\System32\spoolsv.exe[1840] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00140600
.text C:\Windows\system32\svchost.exe[1912] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\svchost.exe[1912] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\svchost.exe[1912] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\svchost.exe[1912] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00370A08
.text C:\Windows\system32\svchost.exe[1912] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 003703FC
.text C:\Windows\system32\svchost.exe[1912] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00370804
.text C:\Windows\system32\svchost.exe[1912] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 003701F8
.text C:\Windows\system32\svchost.exe[1912] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00370600
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[2152] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe[2176] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001503FC
.text C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe[2176] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001501F8
.text C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe[2176] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe[2176] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 001E0A08
.text C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe[2176] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001E03FC
.text C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe[2176] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 001E0804
.text C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe[2176] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001E01F8
.text C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe[2176] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 001E0600
.text C:\Program Files\Autodesk\3ds Max Design 2012\mentalimages\satellite\raysat_3dsmax2012_32server.exe[2204] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001503FC
.text C:\Program Files\Autodesk\3ds Max Design 2012\mentalimages\satellite\raysat_3dsmax2012_32server.exe[2204] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001501F8
.text C:\Program Files\Autodesk\3ds Max Design 2012\mentalimages\satellite\raysat_3dsmax2012_32server.exe[2204] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\svchost.exe[2248] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\svchost.exe[2248] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\svchost.exe[2248] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2292] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2292] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2292] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2292] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00140A08
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2292] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001403FC
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2292] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00140804
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2292] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001401F8
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[2292] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00140600
.text C:\Windows\System32\StikyNot.exe[2440] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\System32\StikyNot.exe[2440] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\System32\StikyNot.exe[2440] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\System32\StikyNot.exe[2440] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00150A08
.text C:\Windows\System32\StikyNot.exe[2440] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001503FC
.text C:\Windows\System32\StikyNot.exe[2440] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00150804
.text C:\Windows\System32\StikyNot.exe[2440] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001501F8
.text C:\Windows\System32\StikyNot.exe[2440] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00150600
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001503FC
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001501F8
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] kernel32.dll!CreateThread 7633DCC2 5 Bytes JMP 6F2D7303 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!EnableWindow 775E8D02 5 Bytes JMP 6F319A14 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!GetAsyncKeyState 775EA256 5 Bytes JMP 6F2BDD8D C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!CallNextHookEx 775EABE1 5 Bytes JMP 6F337BAF C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 6F35EB00 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001F03FC
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!DefWindowProcA 775EBB1C 7 Bytes JMP 6F2D952D C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!CreateWindowExA 775EBF40 5 Bytes JMP 6F2E3363 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 6F312194 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!CreateWindowExW 775EEC7C 5 Bytes JMP 6F33FF87 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001F01F8
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!GetKeyState 775F2B4D 5 Bytes JMP 6F2BDC67 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!IsDialogMessageW 775F4104 5 Bytes JMP 6F466E05 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!DefWindowProcW 775F507D 7 Bytes JMP 6F337C12 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!CreateDialogParamA 77601F42 5 Bytes JMP 6F466668 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!IsDialogMessage 77602019 5 Bytes JMP 6F466DDD C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!DialogBoxParamW 77603B9B 5 Bytes JMP 6F27170B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!CreateDialogIndirectParamA 7760721D 5 Bytes JMP 6F4666D8 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!CreateDialogIndirectParamW 7760EA10 5 Bytes JMP 6F466710 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!DialogBoxIndirectParamW 77613B7F 5 Bytes JMP 6F466336 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!EndDialog 77613BA3 5 Bytes JMP 6F4670B4 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!CreateDialogParamW 77615630 5 Bytes JMP 6F4666A0 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!SetKeyboardState 7761695A 5 Bytes JMP 6F4676D1 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 001F0600
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!SendInput 77617019 5 Bytes JMP 6F467679 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!SetCursorPos 7762C1B0 5 Bytes JMP 6F467752 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!DialogBoxParamA 7762CF42 5 Bytes JMP 6F4662D1 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!DialogBoxIndirectParamA 7762D274 5 Bytes JMP 6F46639B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!MessageBoxIndirectA 7763E869 5 Bytes JMP 6F466258 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!MessageBoxIndirectW 7763E963 5 Bytes JMP 6F4661DF C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!MessageBoxExA 7763E9C9 5 Bytes JMP 6F46617B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!MessageBoxExW 7763E9ED 5 Bytes JMP 6F466117 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] USER32.dll!keybd_event 7763EC3B 5 Bytes JMP 6F467636 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] SHELL32.dll!RealDriveType + 173D 7679FDD0 4 Bytes [CF, 01, 68, 73] {IRET ; ADD [EAX+0x73], EBP}
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] SHELL32.dll!RealDriveType + 1745 7679FDD8 8 Bytes [E0, 61, 67, 73, 79, F7, 67, ...]
.text C:\Program Files\Internet Explorer\iexplore.exe[2552] ole32.dll!OleLoadFromStream 75EB6143 5 Bytes JMP 6F466B0F C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2620] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2620] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2620] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2620] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00100A08
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2620] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001003FC
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2620] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00100804
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2620] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001001F8
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2620] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00100600
.text C:\Windows\system32\svchost.exe[2952] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Windows\system32\svchost.exe[2952] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Windows\system32\svchost.exe[2952] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\svchost.exe[2952] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 002C0A08
.text C:\Windows\system32\svchost.exe[2952] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 002C03FC
.text C:\Windows\system32\svchost.exe[2952] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 002C0804
.text C:\Windows\system32\svchost.exe[2952] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 002C01F8
.text C:\Windows\system32\svchost.exe[2952] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 002C0600
.text C:\Program Files\Steam\Steam.exe[3028] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001603FC
.text C:\Program Files\Steam\Steam.exe[3028] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001601F8
.text C:\Program Files\Steam\Steam.exe[3028] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Steam\Steam.exe[3028] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00180A08
.text C:\Program Files\Steam\Steam.exe[3028] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001803FC
.text C:\Program Files\Steam\Steam.exe[3028] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00180804
.text C:\Program Files\Steam\Steam.exe[3028] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001801F8
.text C:\Program Files\Steam\Steam.exe[3028] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00180600
.text C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3184] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001603FC
.text C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3184] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001601F8
.text C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3184] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3184] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00200A08
.text C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3184] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 002003FC
.text C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3184] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00200804
.text C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3184] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 002001F8
.text C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[3184] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00200600
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[3536] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[3536] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[3536] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[3536] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00100A08
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[3536] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001003FC
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[3536] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00100804
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[3536] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001001F8
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[3536] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00100600
.text C:\Windows\System32\svchost.exe[3748] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000A03FC
.text C:\Windows\System32\svchost.exe[3748] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000A01F8
.text C:\Windows\System32\svchost.exe[3748] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\System32\svchost.exe[3748] user32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 002F0A08
.text C:\Windows\System32\svchost.exe[3748] user32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 002F03FC
.text C:\Windows\System32\svchost.exe[3748] user32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 002F0804
.text C:\Windows\System32\svchost.exe[3748] user32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 002F01F8
.text C:\Windows\System32\svchost.exe[3748] user32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 002F0600
.text C:\Windows\system32\DllHost.exe[4408] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000503FC
.text C:\Windows\system32\DllHost.exe[4408] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000501F8
.text C:\Windows\system32\DllHost.exe[4408] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\DllHost.exe[4408] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 000E0A08
.text C:\Windows\system32\DllHost.exe[4408] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000E03FC
.text C:\Windows\system32\DllHost.exe[4408] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 000E0804
.text C:\Windows\system32\DllHost.exe[4408] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000E01F8
.text C:\Windows\system32\DllHost.exe[4408] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 000E0600
.text C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe[4420] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000703FC
.text C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe[4420] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000701F8
.text C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe[4420] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe[4420] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00100A08
.text C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe[4420] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001003FC
.text C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe[4420] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00100804
.text C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe[4420] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001001F8
.text C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe[4420] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00100600
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000503FC
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000501F8
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] kernel32.dll!CreateThread 7633DCC2 5 Bytes JMP 6F2D7303 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!EnableWindow 775E8D02 5 Bytes JMP 6F319A14 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!GetAsyncKeyState 775EA256 5 Bytes JMP 6F2BDD8D C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!CallNextHookEx 775EABE1 5 Bytes JMP 6F337BAF C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 6F35EB00 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000803FC
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!DefWindowProcA 775EBB1C 7 Bytes JMP 6F2D952D C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!CreateWindowExA 775EBF40 5 Bytes JMP 6F2E3363 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 6F312194 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!CreateWindowExW 775EEC7C 5 Bytes JMP 6F33FF87 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000801F8
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!GetKeyState 775F2B4D 5 Bytes JMP 6F2BDC67 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!IsDialogMessageW 775F4104 5 Bytes JMP 6F466E05 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!DefWindowProcW 775F507D 7 Bytes JMP 6F337C12 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!CreateDialogParamA 77601F42 5 Bytes JMP 6F466668 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!IsDialogMessage 77602019 5 Bytes JMP 6F466DDD C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!DialogBoxParamW 77603B9B 5 Bytes JMP 6F27170B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!CreateDialogIndirectParamA 7760721D 5 Bytes JMP 6F4666D8 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!CreateDialogIndirectParamW 7760EA10 5 Bytes JMP 6F466710 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!DialogBoxIndirectParamW 77613B7F 5 Bytes JMP 6F466336 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!EndDialog 77613BA3 5 Bytes JMP 6F4670B4 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!CreateDialogParamW 77615630 5 Bytes JMP 6F4666A0 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!SetKeyboardState 7761695A 5 Bytes JMP 6F4676D1 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00080600
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!SendInput 77617019 5 Bytes JMP 6F467679 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!SetCursorPos 7762C1B0 5 Bytes JMP 6F467752 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!DialogBoxParamA 7762CF42 5 Bytes JMP 6F4662D1 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!DialogBoxIndirectParamA 7762D274 5 Bytes JMP 6F46639B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!MessageBoxIndirectA 7763E869 5 Bytes JMP 6F466258 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!MessageBoxIndirectW 7763E963 5 Bytes JMP 6F4661DF C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!MessageBoxExA 7763E9C9 5 Bytes JMP 6F46617B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!MessageBoxExW 7763E9ED 5 Bytes JMP 6F466117 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] USER32.dll!keybd_event 7763EC3B 5 Bytes JMP 6F467636 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] SHELL32.dll!RealDriveType + 173D 7679FDD0 4 Bytes [CF, 01, 68, 73] {IRET ; ADD [EAX+0x73], EBP}
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] SHELL32.dll!RealDriveType + 1745 7679FDD8 8 Bytes [E0, 61, 67, 73, 79, F7, 67, ...]
.text C:\Program Files\Internet Explorer\iexplore.exe[4444] ole32.dll!OleLoadFromStream 75EB6143 5 Bytes JMP 6F466B0F C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Windows\system32\DllHost.exe[5036] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[5336] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001703FC
.text C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[5336] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001701F8
.text C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[5336] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[5336] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00190A08
.text C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[5336] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001903FC
.text C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[5336] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00190804
.text C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[5336] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001901F8
.text C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[5336] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00190600
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] kernel32.dll!CreateThread 7633DCC2 5 Bytes JMP 6F2D7303 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!EnableWindow 775E8D02 5 Bytes JMP 6F319A14 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!GetAsyncKeyState 775EA256 5 Bytes JMP 6F2BDD8D C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!CallNextHookEx 775EABE1 5 Bytes JMP 6F337BAF C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 6F35EB00 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!DefWindowProcA 775EBB1C 7 Bytes JMP 6F2D952D C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!CreateWindowExA 775EBF40 5 Bytes JMP 6F2E3363 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 6F312194 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!CreateWindowExW 775EEC7C 5 Bytes JMP 6F33FF87 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!GetKeyState 775F2B4D 5 Bytes JMP 6F2BDC67 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!IsDialogMessageW 775F4104 5 Bytes JMP 6F466E05 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!DefWindowProcW 775F507D 7 Bytes JMP 6F337C12 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!CreateDialogParamA 77601F42 5 Bytes JMP 6F466668 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!IsDialogMessage 77602019 5 Bytes JMP 6F466DDD C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!DialogBoxParamW 77603B9B 5 Bytes JMP 6F27170B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!CreateDialogIndirectParamA 7760721D 5 Bytes JMP 6F4666D8 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!CreateDialogIndirectParamW 7760EA10 5 Bytes JMP 6F466710 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!DialogBoxIndirectParamW 77613B7F 5 Bytes JMP 6F466336 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!EndDialog 77613BA3 5 Bytes JMP 6F4670B4 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!CreateDialogParamW 77615630 5 Bytes JMP 6F4666A0 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!SetKeyboardState 7761695A 5 Bytes JMP 6F4676D1 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!SendInput 77617019 5 Bytes JMP 6F467679 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!SetCursorPos 7762C1B0 5 Bytes JMP 6F467752 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!DialogBoxParamA 7762CF42 5 Bytes JMP 6F4662D1 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!DialogBoxIndirectParamA 7762D274 5 Bytes JMP 6F46639B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!MessageBoxIndirectA 7763E869 5 Bytes JMP 6F466258 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!MessageBoxIndirectW 7763E963 5 Bytes JMP 6F4661DF C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!MessageBoxExA 7763E9C9 5 Bytes JMP 6F46617B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!MessageBoxExW 7763E9ED 5 Bytes JMP 6F466117 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] USER32.dll!keybd_event 7763EC3B 5 Bytes JMP 6F467636 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] SHELL32.dll!RealDriveType + 173D 7679FDD0 4 Bytes [CF, 01, 68, 73] {IRET ; ADD [EAX+0x73], EBP}
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] SHELL32.dll!RealDriveType + 1745 7679FDD8 8 Bytes [E0, 61, 67, 73, 79, F7, 67, ...]
.text C:\Program Files\Internet Explorer\iexplore.exe[5344] ole32.dll!OleLoadFromStream 75EB6143 5 Bytes JMP 6F466B0F C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000503FC
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000501F8
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!EnableWindow 775E8D02 5 Bytes JMP 6F319A14 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 000F0A08
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000F03FC
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 000F0804
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000F01F8
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!DialogBoxParamW 77603B9B 5 Bytes JMP 6F27170B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!DialogBoxIndirectParamW 77613B7F 5 Bytes JMP 6F466336 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 000F0600
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!DialogBoxParamA 7762CF42 5 Bytes JMP 6F4662D1 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!DialogBoxIndirectParamA 7762D274 5 Bytes JMP 6F46639B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!MessageBoxIndirectA 7763E869 5 Bytes JMP 6F466258 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!MessageBoxIndirectW 7763E963 5 Bytes JMP 6F4661DF C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!MessageBoxExA 7763E9C9 5 Bytes JMP 6F46617B C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5432] USER32.dll!MessageBoxExW 7763E9ED 5 Bytes JMP 6F466117 C:\Windows\system32\IEFRAME.dll (Explorador de Internet/Microsoft Corporation)
.text C:\Program Files\Common Files\Steam\SteamService.exe[5592] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 001603FC
.text C:\Program Files\Common Files\Steam\SteamService.exe[5592] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 001601F8
.text C:\Program Files\Common Files\Steam\SteamService.exe[5592] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\Common Files\Steam\SteamService.exe[5592] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 001F0A08
.text C:\Program Files\Common Files\Steam\SteamService.exe[5592] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 001F03FC
.text C:\Program Files\Common Files\Steam\SteamService.exe[5592] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 001F0804
.text C:\Program Files\Common Files\Steam\SteamService.exe[5592] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 001F01F8
.text C:\Program Files\Common Files\Steam\SteamService.exe[5592] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 001F0600
.text C:\Windows\system32\AUDIODG.EXE[5664] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Users\Juan\Desktop\94doe8yc.exe[6040] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[6072] ntdll.dll!LdrUnloadDll 779CC86E 5 Bytes JMP 000603FC
.text C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[6072] ntdll.dll!LdrLoadDll 779D223E 5 Bytes JMP 000601F8
.text C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[6072] kernel32.dll!GetBinaryTypeW + 70 763569F4 1 Byte [62]
.text C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[6072] USER32.dll!UnhookWindowsHookEx 775EADF9 5 Bytes JMP 00080A08
.text C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[6072] USER32.dll!UnhookWinEvent 775EB750 5 Bytes JMP 000803FC
.text C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[6072] USER32.dll!SetWindowsHookExW 775EE30C 5 Bytes JMP 00080804
.text C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[6072] USER32.dll!SetWinEventHook 775F24DC 5 Bytes JMP 000801F8
.text C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe[6072] USER32.dll!SetWindowsHookExA 77616D0C 5 Bytes JMP 00080600

GMER Log continued:

[quote]
---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Program Files\AVAST Software\Avast\AvastSvc.exe[1456] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [73A2F6A0] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll (Common functions/AVAST Software)
IAT C:\Program Files\AVAST Software\Avast\AvastUI.exe[2152] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [73A2F6A0] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll (Common functions/AVAST Software)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [73687F4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [7368F500] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [7368F94D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [736907CA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [7368FCF6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExA] [73675E4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [7368BC51] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [7368C811] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [7368C811] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [7368E457] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [7368AA37] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [7368FCF6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [736907CA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [7368939B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [73675F62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [73689229] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [7367F1F1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [73675E4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [73680ADF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [7368F2BD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [7368F94D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [7369072B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [7368F9A0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [73691542] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [73691C5E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [7367FA79] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [73691191] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [7367F725] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [7367FB25] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [73691095] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [73691F32] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [736912D2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [73690DFB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [73680178] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [73691B2E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [7369194A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsContentTypeW] [73691233] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegQueryUSValueW] [7367F86E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegEnumUSKeyW] [7367F472] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyA] [736927C3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [7369136E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [73691284] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [73690F4E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [73692769] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCanonicalizeW] [7367F9DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [73692937] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [73677430] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [7367F817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [7367E265] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [73675D08] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [7369140A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [73691590] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [73691F83] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [73680123] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [7369218A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [73691BC6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyW] [7367FACB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [736919EE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [7367FC0B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [736920D3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [73692B62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [73692028] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [73690F9F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [73674927] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [73690D47] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [7367FA2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [736918A2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [73691CAC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [7369171C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [736917B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [73674984] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [73688C1A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [7368CB0F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [7368D6BF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [7368D11F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [7368C49D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [7368B245] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [7368A89F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [7368E0C1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [7368A249] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [73689AF3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [7368E457] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [7368E089] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [73689F4B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [7368BC51] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [7368A56D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [7367F6D1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [73691F32] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [73692028] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [73692B05] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [73692B62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [73680178] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetUSValueA] [736764C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [73674CAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [73674927] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [73674984] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [73676528] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[2552] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [73687F4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [7368F500] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [7368F94D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [736907CA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [7368FCF6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExA] [73675E4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [7368BC51] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [7368C811] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [7368C811] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [7368E457] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [7368AA37] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [7368FCF6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [736907CA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [7368939B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [73675F62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [73689229] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [7367F1F1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [73675E4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [73680ADF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [7368F2BD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [7368F94D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [7369072B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [7368F9A0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [73691542] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [73691C5E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [7367FA79] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [73691191] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [7367F725] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [7367FB25] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [73691095] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [73691F32] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [736912D2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [73690DFB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [73680178] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [73691B2E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [7369194A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsContentTypeW] [73691233] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegQueryUSValueW] [7367F86E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegEnumUSKeyW] [7367F472] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyA] [736927C3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [7369136E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [73691284] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [73690F4E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [73692769] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCanonicalizeW] [7367F9DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [73692937] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [73677430] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [7367F817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [7367E265] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [73675D08] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [7369140A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [73691590] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [73691F83] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [73680123] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [7369218A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [73691BC6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyW] [7367FACB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [736919EE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [7367FC0B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [736920D3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [73692B62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [73692028] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [73690F9F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [73674927] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [73690D47] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [7367FA2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [736918A2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [73691CAC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [7369171C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [736917B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [73674984] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [73688C1A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [7368CB0F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [7368D6BF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [7368D11F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [7368C49D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [7368B245] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [7368A89F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [7368E0C1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [7368A249] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [73689AF3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [7368E457] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [7368E089] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [73689F4B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [7368BC51] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [7368A56D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [7367F6D1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [73691F32] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [73692028] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [73692B05] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [73692B62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [73680178] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetUSValueA] [736764C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [73674CAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [73674927] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [73674984] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [73676528] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[4444] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [73687F4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [7368F500] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [7368F94D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [736907CA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [7368FCF6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExA] [73675E4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [7368BC51] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [7368C811] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [7368C811] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [7368E457] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [7368AA37] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [73675EC7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [7368FCF6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [736907CA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [7368939B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [736763E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [7368029E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [73675F62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [73689229] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [7367F1F1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [73675E4F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [73680ADF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [7368F2BD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [7368F94D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [7369072B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [7368F9A0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [73691542] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [73691C5E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [7367FA79] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [73691191] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [7367F725] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [7367FB25] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [73691095] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [73691F32] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [736912D2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [73690DFB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [73680178] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [73691B2E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [7369194A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsContentTypeW] [73691233] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegQueryUSValueW] [7367F86E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegEnumUSKeyW] [7367F472] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyA] [736927C3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [7369136E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [73691284] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [73690F4E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [73692769] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCanonicalizeW] [7367F9DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [73692937] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [73677430] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [7367F817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [7367E265] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [73675D08] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [7369140A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [73691590] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [73691F83] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [73680123] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [7369218A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [73691BC6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyW] [7367FACB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [736919EE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [7367FC0B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [736920D3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [73692B62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [73692028] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [73690F9F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [73674927] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [73690D47] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [7367FA2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [736918A2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [73691CAC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [7369171C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [736917B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [73674984] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [73688C1A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [7368CB0F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [7368D6BF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [7368D11F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [7368C49D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [7368B56B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [7368B245] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [7368A89F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [7368E0C1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [7368ABDB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [7368A249] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [73689AF3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [7368E457] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [7368E089] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [73689F4B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [7368BC51] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [7368A56D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [73674E2B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [73676D22] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [7367F6D1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [73691F32] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [73692028] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [73692B05] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [73692B62] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [73680178] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetUSValueA] [736764C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [73674CAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [73674927] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [73674984] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [73676528] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5344] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [736747BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
Device \Driver\ACPI_HAL \Device\00000052 halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

AttachedDevice \Driver\tdx \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume4 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume4 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

---- EOF - GMER 1.0.15 ----
[/quote]

#5 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:13 AM

Posted 08 April 2012 - 01:51 PM

Please download and run TDSS Killer. If it asks you to fix anything, then please DO NOT FIX ANYTHING. Just post the resulting log.

#6 Pashmino

Pashmino
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 11 April 2012 - 08:44 AM

I can't find a Log like the other programms, so I gonna post what it says:

Scan results:

Found: 1 threat

Suspicius----------> Akamai ( HiddenFile.Multi.Generic)

#7 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:13 AM

Posted 11 April 2012 - 11:24 AM

Can you post the full TDSS Log in the C Drive?

#8 Pashmino

Pashmino
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 11 April 2012 - 02:04 PM

Here it is:

15:40:41.0973 5704 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
15:40:42.0144 5704 ============================================================
15:40:42.0144 5704 Current date / time: 2012/04/11 15:40:42.0144
15:40:42.0144 5704 SystemInfo:
15:40:42.0144 5704
15:40:42.0144 5704 OS Version: 6.1.7601 ServicePack: 1.0
15:40:42.0144 5704 Product type: Workstation
15:40:42.0144 5704 ComputerName: JUAN-PC
15:40:42.0144 5704 UserName: Juan
15:40:42.0144 5704 Windows directory: C:\Windows
15:40:42.0144 5704 System windows directory: C:\Windows
15:40:42.0144 5704 Processor architecture: Intel x86
15:40:42.0144 5704 Number of processors: 8
15:40:42.0144 5704 Page size: 0x1000
15:40:42.0144 5704 Boot type: Normal boot
15:40:42.0144 5704 ============================================================
15:40:43.0252 5704 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:40:43.0267 5704 \Device\Harddisk0\DR0:
15:40:43.0267 5704 MBR used
15:40:43.0267 5704 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:40:43.0267 5704 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x712D3000
15:40:43.0267 5704 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x71305800, BlocksNum 0x3200000
15:40:43.0330 5704 Initialize success
15:40:43.0330 5704 ============================================================
15:40:46.0949 9036 ============================================================
15:40:46.0949 9036 Scan started
15:40:46.0949 9036 Mode: Manual;
15:40:46.0949 9036 ============================================================
15:40:49.0008 9036 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
15:40:49.0008 9036 !SASCORE - ok
15:40:49.0071 9036 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
15:40:49.0071 9036 1394ohci - ok
15:40:49.0102 9036 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
15:40:49.0102 9036 ACPI - ok
15:40:49.0133 9036 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
15:40:49.0133 9036 AcpiPmi - ok
15:40:49.0195 9036 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:40:49.0195 9036 AdobeARMservice - ok
15:40:49.0242 9036 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:40:49.0242 9036 AdobeFlashPlayerUpdateSvc - ok
15:40:49.0273 9036 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
15:40:49.0273 9036 adp94xx - ok
15:40:49.0305 9036 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
15:40:49.0305 9036 adpahci - ok
15:40:49.0320 9036 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
15:40:49.0320 9036 adpu320 - ok
15:40:49.0351 9036 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
15:40:49.0351 9036 AeLookupSvc - ok
15:40:49.0367 9036 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
15:40:49.0383 9036 AFD - ok
15:40:49.0398 9036 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
15:40:49.0398 9036 agp440 - ok
15:40:49.0429 9036 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
15:40:49.0429 9036 aic78xx - ok
15:40:49.0507 9036 Akamai (1125c7d9fb8898015829c387c1bc87c7) c:\program files\common files\akamai/netsession_win_6c825ce.dll
15:40:49.0507 9036 Suspicious file (Hidden): c:\program files\common files\akamai/netsession_win_6c825ce.dll. md5: 1125c7d9fb8898015829c387c1bc87c7
15:40:49.0507 9036 Akamai ( HiddenFile.Multi.Generic ) - warning
15:40:49.0507 9036 Akamai - detected HiddenFile.Multi.Generic (1)
15:40:49.0523 9036 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
15:40:49.0523 9036 ALG - ok
15:40:49.0554 9036 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
15:40:49.0554 9036 aliide - ok
15:40:49.0570 9036 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
15:40:49.0570 9036 amdagp - ok
15:40:49.0585 9036 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
15:40:49.0585 9036 amdide - ok
15:40:49.0617 9036 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
15:40:49.0617 9036 AmdK8 - ok
15:40:49.0648 9036 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
15:40:49.0648 9036 AmdPPM - ok
15:40:49.0679 9036 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
15:40:49.0679 9036 amdsata - ok
15:40:49.0695 9036 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
15:40:49.0695 9036 amdsbs - ok
15:40:49.0726 9036 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
15:40:49.0726 9036 amdxata - ok
15:40:49.0757 9036 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
15:40:49.0757 9036 AppID - ok
15:40:49.0773 9036 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
15:40:49.0773 9036 AppIDSvc - ok
15:40:49.0804 9036 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
15:40:49.0804 9036 Appinfo - ok
15:40:49.0819 9036 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
15:40:49.0819 9036 arc - ok
15:40:49.0835 9036 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
15:40:49.0851 9036 arcsas - ok
15:40:50.0007 9036 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:40:50.0038 9036 aspnet_state - ok
15:40:50.0053 9036 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\Windows\system32\drivers\aswFsBlk.sys
15:40:50.0069 9036 aswFsBlk - ok
15:40:50.0085 9036 aswMonFlt (6693141560b1615d8dccf0d8eb00087e) C:\Windows\system32\drivers\aswMonFlt.sys
15:40:50.0085 9036 aswMonFlt - ok
15:40:50.0116 9036 aswRdr (225013c16fe096714d71649ad7a20e8b) C:\Windows\System32\Drivers\aswrdr2.sys
15:40:50.0116 9036 aswRdr - ok
15:40:50.0131 9036 aswSnx (dcb199b967375753b5019ec15f008f53) C:\Windows\system32\drivers\aswSnx.sys
15:40:50.0147 9036 aswSnx - ok
15:40:50.0163 9036 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\Windows\system32\drivers\aswSP.sys
15:40:50.0163 9036 aswSP - ok
15:40:50.0178 9036 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\Windows\system32\drivers\aswTdi.sys
15:40:50.0178 9036 aswTdi - ok
15:40:50.0194 9036 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
15:40:50.0209 9036 AsyncMac - ok
15:40:50.0225 9036 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
15:40:50.0225 9036 atapi - ok
15:40:50.0272 9036 athur (d79a49fc67421c7bb7dcbd188a442288) C:\Windows\system32\DRIVERS\athur.sys
15:40:50.0287 9036 athur - ok
15:40:50.0319 9036 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
15:40:50.0319 9036 AudioEndpointBuilder - ok
15:40:50.0319 9036 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
15:40:50.0334 9036 Audiosrv - ok
15:40:50.0412 9036 Autodesk Network Licensing Service (f393a805a1ba93e0c3e21abfbef8b708) C:\Program Files\Common Files\Autodesk Shared\Service\AdskNetSrv.exe
15:40:50.0428 9036 Autodesk Network Licensing Service - ok
15:40:50.0475 9036 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:40:50.0475 9036 avast! Antivirus - ok
15:40:50.0490 9036 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
15:40:50.0490 9036 AxInstSV - ok
15:40:50.0521 9036 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
15:40:50.0537 9036 b06bdrv - ok
15:40:50.0553 9036 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
15:40:50.0553 9036 b57nd60x - ok
15:40:50.0584 9036 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
15:40:50.0584 9036 BDESVC - ok
15:40:50.0599 9036 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
15:40:50.0599 9036 Beep - ok
15:40:50.0615 9036 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
15:40:50.0615 9036 BFE - ok
15:40:50.0662 9036 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
15:40:50.0662 9036 BITS - ok
15:40:50.0677 9036 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
15:40:50.0677 9036 blbdrive - ok
15:40:50.0709 9036 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
15:40:50.0709 9036 bowser - ok
15:40:50.0724 9036 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:40:50.0724 9036 BrFiltLo - ok
15:40:50.0740 9036 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:40:50.0740 9036 BrFiltUp - ok
15:40:50.0755 9036 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
15:40:50.0755 9036 Browser - ok
15:40:50.0787 9036 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
15:40:50.0787 9036 Brserid - ok
15:40:50.0802 9036 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
15:40:50.0802 9036 BrSerWdm - ok
15:40:50.0818 9036 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:40:50.0818 9036 BrUsbMdm - ok
15:40:50.0849 9036 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
15:40:50.0849 9036 BrUsbSer - ok
15:40:50.0865 9036 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
15:40:50.0865 9036 BTHMODEM - ok
15:40:50.0880 9036 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
15:40:50.0896 9036 bthserv - ok
15:40:50.0896 9036 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
15:40:50.0896 9036 cdfs - ok
15:40:50.0927 9036 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
15:40:50.0927 9036 cdrom - ok
15:40:50.0943 9036 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
15:40:50.0943 9036 CertPropSvc - ok
15:40:50.0958 9036 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
15:40:50.0958 9036 circlass - ok
15:40:50.0974 9036 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
15:40:50.0989 9036 CLFS - ok
15:40:51.0021 9036 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:40:51.0036 9036 clr_optimization_v2.0.50727_32 - ok
15:40:51.0067 9036 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:40:51.0114 9036 clr_optimization_v4.0.30319_32 - ok
15:40:51.0130 9036 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
15:40:51.0130 9036 CmBatt - ok
15:40:51.0161 9036 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
15:40:51.0161 9036 cmdide - ok
15:40:51.0177 9036 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
15:40:51.0192 9036 CNG - ok
15:40:51.0208 9036 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
15:40:51.0208 9036 Compbatt - ok
15:40:51.0239 9036 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
15:40:51.0239 9036 CompositeBus - ok
15:40:51.0239 9036 COMSysApp - ok
15:40:51.0270 9036 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
15:40:51.0270 9036 crcdisk - ok
15:40:51.0301 9036 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
15:40:51.0301 9036 CryptSvc - ok
15:40:51.0333 9036 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
15:40:51.0333 9036 DcomLaunch - ok
15:40:51.0348 9036 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
15:40:51.0348 9036 defragsvc - ok
15:40:51.0364 9036 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
15:40:51.0379 9036 DfsC - ok
15:40:51.0395 9036 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
15:40:51.0395 9036 Dhcp - ok
15:40:51.0411 9036 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
15:40:51.0411 9036 discache - ok
15:40:51.0426 9036 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
15:40:51.0426 9036 Disk - ok
15:40:51.0442 9036 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
15:40:51.0442 9036 Dnscache - ok
15:40:51.0473 9036 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
15:40:51.0473 9036 dot3svc - ok
15:40:51.0489 9036 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
15:40:51.0489 9036 DPS - ok
15:40:51.0504 9036 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
15:40:51.0504 9036 drmkaud - ok
15:40:51.0535 9036 dtsoftbus01 (c0c7ceccb6c85994c2bc92d58e52d3f2) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
15:40:51.0535 9036 dtsoftbus01 - ok
15:40:51.0567 9036 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
15:40:51.0582 9036 DXGKrnl - ok
15:40:51.0582 9036 e1yexpress (8eef52ad831471e323ee7364a8656d35) C:\Windows\system32\DRIVERS\e1y6032.sys
15:40:51.0598 9036 e1yexpress - ok
15:40:51.0598 9036 EagleXNt - ok
15:40:51.0613 9036 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
15:40:51.0613 9036 EapHost - ok
15:40:51.0676 9036 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
15:40:51.0738 9036 ebdrv - ok
15:40:51.0769 9036 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
15:40:51.0769 9036 EFS - ok
15:40:51.0801 9036 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
15:40:51.0816 9036 ehRecvr - ok
15:40:51.0832 9036 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
15:40:51.0832 9036 ehSched - ok
15:40:51.0847 9036 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
15:40:51.0863 9036 elxstor - ok
15:40:51.0879 9036 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
15:40:51.0879 9036 ErrDev - ok
15:40:51.0910 9036 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
15:40:51.0910 9036 EventSystem - ok
15:40:51.0941 9036 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
15:40:51.0941 9036 exfat - ok
15:40:51.0957 9036 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
15:40:51.0957 9036 fastfat - ok
15:40:51.0972 9036 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
15:40:51.0988 9036 Fax - ok
15:40:52.0003 9036 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
15:40:52.0003 9036 fdc - ok
15:40:52.0019 9036 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
15:40:52.0019 9036 fdPHost - ok
15:40:52.0035 9036 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
15:40:52.0035 9036 FDResPub - ok
15:40:52.0050 9036 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
15:40:52.0050 9036 FileInfo - ok
15:40:52.0066 9036 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
15:40:52.0066 9036 Filetrace - ok
15:40:52.0128 9036 FLEXnet Licensing Service (73081cf28f0ae20a52ca4f67cee6e6b0) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
15:40:52.0144 9036 FLEXnet Licensing Service - ok
15:40:52.0175 9036 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
15:40:52.0175 9036 flpydisk - ok
15:40:52.0191 9036 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
15:40:52.0191 9036 FltMgr - ok
15:40:52.0222 9036 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
15:40:52.0222 9036 FontCache - ok
15:40:52.0269 9036 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:40:52.0284 9036 FontCache3.0.0.0 - ok
15:40:52.0300 9036 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
15:40:52.0300 9036 FsDepends - ok
15:40:52.0315 9036 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
15:40:52.0315 9036 Fs_Rec - ok
15:40:52.0331 9036 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
15:40:52.0331 9036 fvevol - ok
15:40:52.0347 9036 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:40:52.0362 9036 gagp30kx - ok
15:40:52.0378 9036 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
15:40:52.0393 9036 gpsvc - ok
15:40:52.0409 9036 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
15:40:52.0409 9036 hamachi - ok
15:40:52.0471 9036 Hamachi2Svc (fa89c0429821c7c429eec7a0ce1c02d3) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
15:40:52.0503 9036 Hamachi2Svc - ok
15:40:52.0518 9036 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
15:40:52.0518 9036 hcw85cir - ok
15:40:52.0549 9036 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
15:40:52.0549 9036 HdAudAddService - ok
15:40:52.0565 9036 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
15:40:52.0581 9036 HDAudBus - ok
15:40:52.0596 9036 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
15:40:52.0596 9036 HidBatt - ok
15:40:52.0627 9036 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
15:40:52.0627 9036 HidBth - ok
15:40:52.0643 9036 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
15:40:52.0643 9036 HidIr - ok
15:40:52.0659 9036 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
15:40:52.0659 9036 hidserv - ok
15:40:52.0674 9036 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
15:40:52.0690 9036 HidUsb - ok
15:40:52.0705 9036 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
15:40:52.0705 9036 hkmsvc - ok
15:40:52.0721 9036 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
15:40:52.0737 9036 HomeGroupListener - ok
15:40:52.0752 9036 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
15:40:52.0768 9036 HomeGroupProvider - ok
15:40:52.0783 9036 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
15:40:52.0799 9036 HpSAMD - ok
15:40:52.0815 9036 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
15:40:52.0815 9036 HTTP - ok
15:40:52.0846 9036 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
15:40:52.0846 9036 hwpolicy - ok
15:40:52.0877 9036 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
15:40:52.0877 9036 i8042prt - ok
15:40:52.0924 9036 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
15:40:52.0924 9036 iaStorV - ok
15:40:52.0986 9036 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:40:52.0986 9036 idsvc - ok
15:40:53.0002 9036 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
15:40:53.0002 9036 iirsp - ok
15:40:53.0049 9036 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
15:40:53.0049 9036 IKEEXT - ok
15:40:53.0064 9036 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
15:40:53.0064 9036 intelide - ok
15:40:53.0095 9036 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
15:40:53.0095 9036 intelppm - ok
15:40:53.0111 9036 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
15:40:53.0111 9036 IPBusEnum - ok
15:40:53.0142 9036 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:40:53.0142 9036 IpFilterDriver - ok
15:40:53.0158 9036 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
15:40:53.0158 9036 iphlpsvc - ok
15:40:53.0189 9036 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
15:40:53.0189 9036 IPMIDRV - ok
15:40:53.0220 9036 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
15:40:53.0220 9036 IPNAT - ok
15:40:53.0236 9036 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
15:40:53.0236 9036 IRENUM - ok
15:40:53.0267 9036 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
15:40:53.0267 9036 isapnp - ok
15:40:53.0298 9036 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
15:40:53.0298 9036 iScsiPrt - ok
15:40:53.0314 9036 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
15:40:53.0314 9036 kbdclass - ok
15:40:53.0345 9036 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
15:40:53.0345 9036 kbdhid - ok
15:40:53.0361 9036 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:40:53.0361 9036 KeyIso - ok
15:40:53.0392 9036 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
15:40:53.0392 9036 KSecDD - ok
15:40:53.0407 9036 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
15:40:53.0407 9036 KSecPkg - ok
15:40:53.0439 9036 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
15:40:53.0454 9036 KtmRm - ok
15:40:53.0470 9036 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
15:40:53.0485 9036 LanmanServer - ok
15:40:53.0501 9036 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
15:40:53.0501 9036 LanmanWorkstation - ok
15:40:53.0517 9036 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
15:40:53.0517 9036 lltdio - ok
15:40:53.0548 9036 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
15:40:53.0548 9036 lltdsvc - ok
15:40:53.0563 9036 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
15:40:53.0563 9036 lmhosts - ok
15:40:53.0579 9036 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:40:53.0579 9036 LSI_FC - ok
15:40:53.0579 9036 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:40:53.0595 9036 LSI_SAS - ok
15:40:53.0610 9036 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:40:53.0610 9036 LSI_SAS2 - ok
15:40:53.0626 9036 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:40:53.0641 9036 LSI_SCSI - ok
15:40:53.0641 9036 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
15:40:53.0641 9036 luafv - ok
15:40:53.0688 9036 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
15:40:53.0688 9036 Mcx2Svc - ok
15:40:53.0751 9036 MDM (7cf1b716372b89568ae4c0fe769f5869) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
15:40:53.0751 9036 MDM - ok
15:40:53.0782 9036 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
15:40:53.0782 9036 megasas - ok
15:40:53.0797 9036 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
15:40:53.0797 9036 MegaSR - ok
15:40:53.0829 9036 MEMSWEEP2 - ok
15:40:53.0891 9036 mi-raysat_3dsmax2012_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files\Autodesk\3ds Max Design 2012\mentalimages\satellite\raysat_3dsmax2012_32server.exe
15:40:53.0907 9036 mi-raysat_3dsmax2012_32 - ok
15:40:53.0922 9036 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
15:40:53.0922 9036 MMCSS - ok
15:40:53.0938 9036 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
15:40:53.0938 9036 Modem - ok
15:40:53.0969 9036 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
15:40:53.0969 9036 monitor - ok
15:40:53.0985 9036 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
15:40:54.0000 9036 mouclass - ok
15:40:54.0016 9036 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
15:40:54.0016 9036 mouhid - ok
15:40:54.0031 9036 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
15:40:54.0031 9036 mountmgr - ok
15:40:54.0063 9036 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
15:40:54.0063 9036 mpio - ok
15:40:54.0078 9036 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
15:40:54.0078 9036 mpsdrv - ok
15:40:54.0125 9036 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
15:40:54.0125 9036 MpsSvc - ok
15:40:54.0156 9036 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
15:40:54.0156 9036 MRxDAV - ok
15:40:54.0172 9036 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:40:54.0172 9036 mrxsmb - ok
15:40:54.0203 9036 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:40:54.0203 9036 mrxsmb10 - ok
15:40:54.0219 9036 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:40:54.0219 9036 mrxsmb20 - ok
15:40:54.0234 9036 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
15:40:54.0234 9036 msahci - ok
15:40:54.0250 9036 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
15:40:54.0265 9036 msdsm - ok
15:40:54.0281 9036 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
15:40:54.0281 9036 MSDTC - ok
15:40:54.0297 9036 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
15:40:54.0297 9036 Msfs - ok
15:40:54.0328 9036 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
15:40:54.0343 9036 mshidkmdf - ok
15:40:54.0343 9036 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
15:40:54.0343 9036 msisadrv - ok
15:40:54.0359 9036 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
15:40:54.0406 9036 MSiSCSI - ok
15:40:54.0406 9036 msiserver - ok
15:40:54.0421 9036 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
15:40:54.0421 9036 MSKSSRV - ok
15:40:54.0437 9036 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
15:40:54.0453 9036 MSPCLOCK - ok
15:40:54.0453 9036 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
15:40:54.0468 9036 MSPQM - ok
15:40:54.0484 9036 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
15:40:54.0484 9036 MsRPC - ok
15:40:54.0499 9036 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
15:40:54.0499 9036 mssmbios - ok
15:40:54.0515 9036 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
15:40:54.0515 9036 MSTEE - ok
15:40:54.0531 9036 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
15:40:54.0531 9036 MTConfig - ok
15:40:54.0546 9036 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
15:40:54.0546 9036 Mup - ok
15:40:54.0562 9036 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
15:40:54.0577 9036 napagent - ok
15:40:54.0593 9036 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
15:40:54.0593 9036 NativeWifiP - ok
15:40:54.0609 9036 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
15:40:54.0609 9036 NDIS - ok
15:40:54.0640 9036 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
15:40:54.0640 9036 NdisCap - ok
15:40:54.0640 9036 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
15:40:54.0640 9036 NdisTapi - ok
15:40:54.0671 9036 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
15:40:54.0671 9036 Ndisuio - ok
15:40:54.0687 9036 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
15:40:54.0687 9036 NdisWan - ok
15:40:54.0718 9036 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
15:40:54.0718 9036 NDProxy - ok
15:40:54.0733 9036 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
15:40:54.0733 9036 NetBIOS - ok
15:40:54.0780 9036 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
15:40:54.0780 9036 NetBT - ok
15:40:54.0811 9036 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:40:54.0811 9036 Netlogon - ok
15:40:54.0827 9036 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
15:40:54.0827 9036 Netman - ok
15:40:54.0889 9036 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:40:54.0905 9036 NetMsmqActivator - ok
15:40:54.0905 9036 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:40:54.0905 9036 NetPipeActivator - ok
15:40:54.0936 9036 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
15:40:54.0936 9036 netprofm - ok
15:40:54.0952 9036 netr73 (76b1157ef850830c5ece61d3e591ca8b) C:\Windows\system32\DRIVERS\netr73.sys
15:40:55.0217 9036 netr73 - ok
15:40:55.0373 9036 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:40:55.0373 9036 NetTcpActivator - ok
15:40:55.0373 9036 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:40:55.0373 9036 NetTcpPortSharing - ok
15:40:55.0404 9036 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
15:40:55.0404 9036 nfrd960 - ok
15:40:55.0435 9036 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
15:40:55.0435 9036 NlaSvc - ok
15:40:55.0435 9036 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
15:40:55.0435 9036 Npfs - ok
15:40:55.0451 9036 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
15:40:55.0467 9036 nsi - ok
15:40:55.0467 9036 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
15:40:55.0482 9036 nsiproxy - ok
15:40:55.0513 9036 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
15:40:55.0545 9036 Ntfs - ok
15:40:55.0560 9036 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
15:40:55.0560 9036 Null - ok
15:40:55.0576 9036 NVHDA (0e616537f3e12d4c9fb71181c2f21bd5) C:\Windows\system32\drivers\nvhda32v.sys
15:40:55.0591 9036 NVHDA - ok
15:40:55.0732 9036 nvlddmkm (4152708c0c24e30dae7fa87d5afe1d7b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:40:55.0903 9036 nvlddmkm - ok
15:40:55.0935 9036 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
15:40:55.0950 9036 nvraid - ok
15:40:55.0966 9036 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
15:40:55.0966 9036 nvstor - ok
15:40:56.0013 9036 nvsvc (26db28b32e8d2f57cb5065a4a053801a) C:\Windows\system32\nvvsvc.exe
15:40:56.0013 9036 nvsvc - ok
15:40:56.0091 9036 nvUpdatusService (a19bbe1e3e3fef50b94ca07dcc0fb776) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
15:40:56.0122 9036 nvUpdatusService - ok
15:40:56.0169 9036 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
15:40:56.0169 9036 nv_agp - ok
15:40:56.0231 9036 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:40:56.0247 9036 odserv - ok
15:40:56.0262 9036 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
15:40:56.0262 9036 ohci1394 - ok
15:40:56.0293 9036 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:40:56.0293 9036 ose - ok
15:40:56.0325 9036 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
15:40:56.0325 9036 p2pimsvc - ok
15:40:56.0340 9036 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
15:40:56.0340 9036 p2psvc - ok
15:40:56.0371 9036 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
15:40:56.0371 9036 Parport - ok
15:40:56.0403 9036 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
15:40:56.0403 9036 partmgr - ok
15:40:56.0418 9036 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
15:40:56.0418 9036 Parvdm - ok
15:40:56.0434 9036 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
15:40:56.0434 9036 PcaSvc - ok
15:40:56.0449 9036 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
15:40:56.0449 9036 pci - ok
15:40:56.0481 9036 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
15:40:56.0481 9036 pciide - ok
15:40:56.0496 9036 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
15:40:56.0512 9036 pcmcia - ok
15:40:56.0527 9036 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
15:40:56.0527 9036 pcw - ok
15:40:56.0543 9036 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
15:40:56.0559 9036 PEAUTH - ok
15:40:56.0590 9036 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
15:40:56.0621 9036 pla - ok
15:40:56.0652 9036 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
15:40:56.0668 9036 PlugPlay - ok
15:40:56.0683 9036 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
15:40:56.0683 9036 PNRPAutoReg - ok
15:40:56.0683 9036 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
15:40:56.0699 9036 PNRPsvc - ok
15:40:56.0746 9036 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
15:40:56.0746 9036 PolicyAgent - ok
15:40:56.0777 9036 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
15:40:56.0777 9036 Power - ok
15:40:56.0793 9036 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
15:40:56.0793 9036 PptpMiniport - ok
15:40:56.0824 9036 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
15:40:56.0824 9036 Processor - ok
15:40:56.0855 9036 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
15:40:56.0855 9036 ProfSvc - ok
15:40:56.0871 9036 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:40:56.0886 9036 ProtectedStorage - ok
15:40:56.0902 9036 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
15:40:56.0902 9036 Psched - ok
15:40:56.0949 9036 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
15:40:56.0964 9036 ql2300 - ok
15:40:56.0995 9036 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
15:40:56.0995 9036 ql40xx - ok
15:40:57.0027 9036 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
15:40:57.0027 9036 QWAVE - ok
15:40:57.0042 9036 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
15:40:57.0042 9036 QWAVEdrv - ok
15:40:57.0058 9036 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
15:40:57.0058 9036 RasAcd - ok
15:40:57.0089 9036 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:40:57.0089 9036 RasAgileVpn - ok
15:40:57.0105 9036 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
15:40:57.0105 9036 RasAuto - ok
15:40:57.0120 9036 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:40:57.0120 9036 Rasl2tp - ok
15:40:57.0151 9036 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
15:40:57.0151 9036 RasMan - ok
15:40:57.0183 9036 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
15:40:57.0183 9036 RasPppoe - ok
15:40:57.0183 9036 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
15:40:57.0198 9036 RasSstp - ok
15:40:57.0229 9036 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
15:40:57.0229 9036 rdbss - ok
15:40:57.0245 9036 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
15:40:57.0245 9036 rdpbus - ok
15:40:57.0292 9036 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:40:57.0292 9036 RDPCDD - ok
15:40:57.0292 9036 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
15:40:57.0292 9036 RDPENCDD - ok
15:40:57.0307 9036 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
15:40:57.0307 9036 RDPREFMP - ok
15:40:57.0339 9036 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
15:40:57.0339 9036 RDPWD - ok
15:40:57.0354 9036 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
15:40:57.0354 9036 rdyboost - ok
15:40:57.0385 9036 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
15:40:57.0385 9036 RemoteAccess - ok
15:40:57.0401 9036 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
15:40:57.0417 9036 RemoteRegistry - ok
15:40:57.0417 9036 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
15:40:57.0432 9036 RpcEptMapper - ok
15:40:57.0432 9036 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
15:40:57.0448 9036 RpcLocator - ok
15:40:57.0463 9036 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
15:40:57.0463 9036 RpcSs - ok
15:40:57.0479 9036 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
15:40:57.0495 9036 rspndr - ok
15:40:57.0510 9036 RTL8187B (949f74cb383a1d5da67aea9ccd4a8b87) C:\Windows\system32\DRIVERS\rtl8187B.sys
15:40:57.0526 9036 RTL8187B - ok
15:40:57.0541 9036 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:40:57.0541 9036 SamSs - ok
15:40:57.0604 9036 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:40:57.0604 9036 SASDIFSV - ok
15:40:57.0635 9036 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:40:57.0635 9036 SASKUTIL - ok
15:40:57.0666 9036 SAVRKBootTasks (e5c587c0668f83e799d1c43bc53e5e37) C:\Windows\system32\SAVRKBootTasks.sys
15:40:57.0666 9036 SAVRKBootTasks - ok
15:40:57.0697 9036 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
15:40:57.0697 9036 sbp2port - ok
15:40:57.0713 9036 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
15:40:57.0713 9036 SCardSvr - ok
15:40:57.0729 9036 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
15:40:57.0729 9036 scfilter - ok
15:40:57.0760 9036 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
15:40:57.0775 9036 Schedule - ok
15:40:57.0791 9036 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
15:40:57.0791 9036 SCPolicySvc - ok
15:40:57.0807 9036 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
15:40:57.0822 9036 SDRSVC - ok
15:40:57.0838 9036 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:40:57.0838 9036 secdrv - ok
15:40:57.0853 9036 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
15:40:57.0869 9036 seclogon - ok
15:40:57.0885 9036 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
15:40:57.0885 9036 SENS - ok
15:40:57.0916 9036 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
15:40:57.0916 9036 SensrSvc - ok
15:40:57.0947 9036 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
15:40:57.0947 9036 Serenum - ok
15:40:57.0978 9036 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
15:40:57.0978 9036 Serial - ok
15:40:58.0009 9036 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
15:40:58.0009 9036 sermouse - ok
15:40:58.0041 9036 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
15:40:58.0041 9036 SessionEnv - ok
15:40:58.0056 9036 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
15:40:58.0056 9036 sffdisk - ok
15:40:58.0072 9036 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
15:40:58.0072 9036 sffp_mmc - ok
15:40:58.0087 9036 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
15:40:58.0087 9036 sffp_sd - ok
15:40:58.0119 9036 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
15:40:58.0134 9036 sfloppy - ok
15:40:58.0181 9036 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
15:40:58.0181 9036 SharedAccess - ok
15:40:58.0197 9036 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
15:40:58.0197 9036 ShellHWDetection - ok
15:40:58.0228 9036 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
15:40:58.0228 9036 sisagp - ok
15:40:58.0243 9036 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:40:58.0243 9036 SiSRaid2 - ok
15:40:58.0259 9036 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
15:40:58.0275 9036 SiSRaid4 - ok
15:40:58.0290 9036 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
15:40:58.0290 9036 Smb - ok
15:40:58.0321 9036 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
15:40:58.0321 9036 SNMPTRAP - ok
15:40:58.0337 9036 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
15:40:58.0337 9036 spldr - ok
15:40:58.0353 9036 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
15:40:58.0353 9036 Spooler - ok
15:40:58.0415 9036 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
15:40:58.0477 9036 sppsvc - ok
15:40:58.0493 9036 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
15:40:58.0509 9036 sppuinotify - ok
15:40:58.0540 9036 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
15:40:58.0540 9036 srv - ok
15:40:58.0540 9036 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
15:40:58.0555 9036 srv2 - ok
15:40:58.0555 9036 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
15:40:58.0555 9036 srvnet - ok
15:40:58.0587 9036 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
15:40:58.0602 9036 SSDPSRV - ok
15:40:58.0633 9036 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
15:40:58.0633 9036 SstpSvc - ok
15:40:58.0665 9036 Steam Client Service - ok
15:40:58.0711 9036 Stereo Service (9bf7e58d9113ce15cf4f1e1b18ceff83) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:40:58.0727 9036 Stereo Service - ok
15:40:58.0743 9036 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
15:40:58.0743 9036 stexstor - ok
15:40:58.0758 9036 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
15:40:58.0774 9036 StiSvc - ok
15:40:58.0774 9036 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
15:40:58.0774 9036 swenum - ok
15:40:58.0805 9036 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
15:40:58.0805 9036 swprv - ok
15:40:58.0852 9036 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
15:40:58.0867 9036 SysMain - ok
15:40:58.0883 9036 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
15:40:58.0899 9036 TabletInputService - ok
15:40:58.0914 9036 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
15:40:58.0914 9036 TapiSrv - ok
15:40:58.0945 9036 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
15:40:58.0945 9036 TBS - ok
15:40:59.0008 9036 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
15:40:59.0039 9036 Tcpip - ok
15:40:59.0070 9036 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
15:40:59.0070 9036 TCPIP6 - ok
15:40:59.0101 9036 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
15:40:59.0101 9036 tcpipreg - ok
15:40:59.0133 9036 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
15:40:59.0133 9036 TDPIPE - ok
15:40:59.0164 9036 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
15:40:59.0164 9036 TDTCP - ok
15:40:59.0195 9036 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
15:40:59.0195 9036 tdx - ok
15:40:59.0211 9036 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
15:40:59.0226 9036 TermDD - ok
15:40:59.0242 9036 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
15:40:59.0242 9036 TermService - ok
15:40:59.0257 9036 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
15:40:59.0273 9036 Themes - ok
15:40:59.0289 9036 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
15:40:59.0289 9036 THREADORDER - ok
15:40:59.0320 9036 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
15:40:59.0320 9036 TrkWks - ok
15:40:59.0351 9036 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
15:40:59.0351 9036 TrustedInstaller - ok
15:40:59.0382 9036 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:40:59.0382 9036 tssecsrv - ok
15:40:59.0398 9036 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
15:40:59.0398 9036 TsUsbFlt - ok
15:40:59.0413 9036 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
15:40:59.0413 9036 tunnel - ok
15:40:59.0429 9036 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
15:40:59.0445 9036 uagp35 - ok
15:40:59.0460 9036 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
15:40:59.0460 9036 udfs - ok
15:40:59.0491 9036 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
15:40:59.0491 9036 UI0Detect - ok
15:40:59.0507 9036 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
15:40:59.0507 9036 uliagpkx - ok
15:40:59.0538 9036 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
15:40:59.0538 9036 umbus - ok
15:40:59.0554 9036 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
15:40:59.0569 9036 UmPass - ok
15:40:59.0601 9036 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
15:40:59.0601 9036 upnphost - ok
15:40:59.0616 9036 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
15:40:59.0632 9036 usbccgp - ok
15:40:59.0647 9036 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
15:40:59.0647 9036 usbcir - ok
15:40:59.0679 9036 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
15:40:59.0679 9036 usbehci - ok
15:40:59.0694 9036 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
15:40:59.0694 9036 usbhub - ok
15:40:59.0710 9036 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
15:40:59.0710 9036 usbohci - ok
15:40:59.0741 9036 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
15:40:59.0757 9036 usbprint - ok
15:40:59.0772 9036 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:40:59.0772 9036 USBSTOR - ok
15:40:59.0803 9036 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
15:40:59.0803 9036 usbuhci - ok
15:40:59.0835 9036 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
15:40:59.0835 9036 UxSms - ok
15:40:59.0866 9036 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:40:59.0866 9036 VaultSvc - ok
15:40:59.0881 9036 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
15:40:59.0881 9036 vdrvroot - ok
15:40:59.0897 9036 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
15:40:59.0913 9036 vds - ok
15:40:59.0928 9036 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
15:40:59.0928 9036 vga - ok
15:40:59.0944 9036 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
15:40:59.0944 9036 VgaSave - ok
15:40:59.0975 9036 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
15:40:59.0975 9036 vhdmp - ok
15:40:59.0991 9036 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
15:40:59.0991 9036 viaagp - ok
15:41:00.0006 9036 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
15:41:00.0006 9036 ViaC7 - ok
15:41:00.0037 9036 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
15:41:00.0037 9036 viaide - ok
15:41:00.0069 9036 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
15:41:00.0069 9036 volmgr - ok
15:41:00.0084 9036 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
15:41:00.0100 9036 volmgrx - ok
15:41:00.0115 9036 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
15:41:00.0115 9036 volsnap - ok
15:41:00.0131 9036 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
15:41:00.0131 9036 vsmraid - ok
15:41:00.0162 9036 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
15:41:00.0178 9036 VSS - ok
15:41:00.0209 9036 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
15:41:00.0209 9036 vwifibus - ok
15:41:00.0225 9036 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
15:41:00.0225 9036 vwififlt - ok
15:41:00.0240 9036 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
15:41:00.0240 9036 vwifimp - ok
15:41:00.0271 9036 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
15:41:00.0271 9036 W32Time - ok
15:41:00.0287 9036 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
15:41:00.0303 9036 WacomPen - ok
15:41:00.0318 9036 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
15:41:00.0318 9036 WANARP - ok
15:41:00.0334 9036 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
15:41:00.0334 9036 Wanarpv6 - ok
15:41:00.0381 9036 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
15:41:00.0490 9036 WatAdminSvc - ok
15:41:00.0537 9036 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
15:41:00.0568 9036 wbengine - ok
15:41:00.0583 9036 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
15:41:00.0599 9036 WbioSrvc - ok
15:41:00.0615 9036 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
15:41:00.0615 9036 wcncsvc - ok
15:41:00.0630 9036 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
15:41:00.0646 9036 WcsPlugInService - ok
15:41:00.0661 9036 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
15:41:00.0661 9036 Wd - ok
15:41:00.0677 9036 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
15:41:00.0693 9036 Wdf01000 - ok
15:41:00.0693 9036 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
15:41:00.0708 9036 WdiServiceHost - ok
15:41:00.0708 9036 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
15:41:00.0708 9036 WdiSystemHost - ok
15:41:00.0724 9036 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
15:41:00.0724 9036 WebClient - ok
15:41:00.0739 9036 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
15:41:00.0755 9036 Wecsvc - ok
15:41:00.0771 9036 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
15:41:00.0786 9036 wercplsupport - ok
15:41:00.0786 9036 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
15:41:00.0802 9036 WerSvc - ok
15:41:00.0817 9036 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
15:41:00.0817 9036 WfpLwf - ok
15:41:00.0833 9036 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
15:41:00.0833 9036 WIMMount - ok
15:41:00.0880 9036 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
15:41:00.0895 9036 WinDefend - ok
15:41:00.0895 9036 WinHttpAutoProxySvc - ok
15:41:00.0942 9036 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
15:41:00.0942 9036 Winmgmt - ok
15:41:00.0973 9036 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
15:41:00.0989 9036 WinRM - ok
15:41:01.0020 9036 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
15:41:01.0020 9036 WinUsb - ok
15:41:01.0051 9036 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
15:41:01.0067 9036 Wlansvc - ok
15:41:01.0129 9036 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:41:01.0161 9036 wlidsvc - ok
15:41:01.0176 9036 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
15:41:01.0176 9036 WmiAcpi - ok
15:41:01.0207 9036 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
15:41:01.0207 9036 wmiApSrv - ok
15:41:01.0239 9036 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:41:01.0254 9036 WMPNetworkSvc - ok
15:41:01.0285 9036 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
15:41:01.0285 9036 WPCSvc - ok
15:41:01.0317 9036 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
15:41:01.0317 9036 WPDBusEnum - ok
15:41:01.0332 9036 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
15:41:01.0332 9036 ws2ifsl - ok
15:41:01.0348 9036 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
15:41:01.0348 9036 wscsvc - ok
15:41:01.0363 9036 WSearch - ok
15:41:01.0410 9036 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
15:41:01.0441 9036 wuauserv - ok
15:41:01.0473 9036 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
15:41:01.0473 9036 WudfPf - ok
15:41:01.0519 9036 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:41:01.0519 9036 WUDFRd - ok
15:41:01.0551 9036 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
15:41:01.0551 9036 wudfsvc - ok
15:41:01.0582 9036 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
15:41:01.0582 9036 WwanSvc - ok
15:41:01.0597 9036 XDva390 - ok
15:41:01.0597 9036 XDva391 - ok
15:41:01.0644 9036 XDva394 - ok
15:41:01.0660 9036 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
15:41:01.0722 9036 \Device\Harddisk0\DR0 - ok
15:41:01.0722 9036 Boot (0x1200) (1ae9f77dc2535c96f51d2f134431a877) \Device\Harddisk0\DR0\Partition0
15:41:01.0722 9036 \Device\Harddisk0\DR0\Partition0 - ok
15:41:01.0738 9036 Boot (0x1200) (1054a289ca88cb65d180c4744b0d7fad) \Device\Harddisk0\DR0\Partition1
15:41:01.0738 9036 \Device\Harddisk0\DR0\Partition1 - ok
15:41:01.0753 9036 Boot (0x1200) (fbfc2e9fec8f4153e4c8a84f2c1d2a5e) \Device\Harddisk0\DR0\Partition2
15:41:01.0753 9036 \Device\Harddisk0\DR0\Partition2 - ok
15:41:01.0753 9036 ============================================================
15:41:01.0753 9036 Scan finished
15:41:01.0753 9036 ============================================================
15:41:01.0769 6024 Detected object count: 1
15:41:01.0769 6024 Actual detected object count: 1
15:41:15.0060 6024 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
15:41:15.0060 6024 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
15:44:04.0687 8068 Deinitialize success



#9 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:13 AM

Posted 11 April 2012 - 02:29 PM

Please follow the instructions in ==>Malware Removal and Log Section Preparation Guide<==.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include the link to this topic in your new topic and a description of your computer issues and what you have done to resolve them.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

Once you have created the new topic, please reply back here with a link to the new topic.

Most importantly please be patient till you get a reply to your topic. If you receive a reply from the HelpBot, then please follow the instructions outlined in the helpbot's post.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users