Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

redirect virus & error messages


  • Please log in to reply
19 replies to this topic

#1 ginger12

ginger12

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 15 May 2012 - 09:11 AM

I have the redirect virus and tried to follow online removal help but it didn't work since I can't find the virus. I have Vipre antivirus and also system mechanic. I'm also getting an error that says volpanlu.exc has stopped working and three error loading messages. My computer is freezing and frequently Internet explorer stops working. Any help would be much appreciated since I'm taking an online summer college class online.
Thanks!!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:43 PM

Posted 15 May 2012 - 09:13 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 15 May 2012 - 11:15 AM

10:28:27.0933 3000 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
10:28:29.0945 3000 ============================================================
10:28:29.0945 3000 Current date / time: 2012/05/15 10:28:29.0945
10:28:29.0945 3000 SystemInfo:
10:28:29.0945 3000
10:28:29.0945 3000 OS Version: 6.0.6002 ServicePack: 2.0
10:28:29.0945 3000 Product type: Workstation
10:28:29.0945 3000 ComputerName: DREE-PC
10:28:29.0945 3000 UserName: Dree
10:28:29.0945 3000 Windows directory: C:\Windows
10:28:29.0945 3000 System windows directory: C:\Windows
10:28:29.0945 3000 Processor architecture: Intel x86
10:28:29.0945 3000 Number of processors: 4
10:28:29.0945 3000 Page size: 0x1000
10:28:29.0945 3000 Boot type: Normal boot
10:28:29.0945 3000 ============================================================
10:28:30.0366 3000 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:28:30.0413 3000 ============================================================
10:28:30.0413 3000 \Device\Harddisk0\DR0:
10:28:30.0413 3000 MBR partitions:
10:28:30.0413 3000 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1B800, BlocksNum 0x1E00000
10:28:30.0413 3000 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E1B800, BlocksNum 0x3856A000
10:28:30.0413 3000 ============================================================
10:28:30.0444 3000 C: <-> \Device\Harddisk0\DR0\Partition1
10:28:30.0460 3000 D: <-> \Device\Harddisk0\DR0\Partition0
10:28:30.0460 3000 ============================================================
10:28:30.0460 3000 Initialize success
10:28:30.0460 3000 ============================================================
10:28:43.0954 0812 ============================================================
10:28:43.0954 0812 Scan started
10:28:43.0954 0812 Mode: Manual; TDLFS;
10:28:43.0954 0812 ============================================================
10:28:44.0422 0812 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
10:28:44.0422 0812 ACPI - ok
10:28:44.0469 0812 adfs (73685e15ef8b0bd9c30f1af413f13d49) C:\Windows\system32\drivers\adfs.sys
10:28:44.0469 0812 adfs - ok
10:28:44.0547 0812 AdobeActiveFileMonitor6.0 (e8fe4fce23d2809bd88bcc1d0f8408ce) C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
10:28:44.0547 0812 AdobeActiveFileMonitor6.0 - ok
10:28:44.0578 0812 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
10:28:44.0609 0812 adp94xx - ok
10:28:44.0625 0812 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
10:28:44.0640 0812 adpahci - ok
10:28:44.0656 0812 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
10:28:44.0672 0812 adpu160m - ok
10:28:44.0703 0812 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
10:28:44.0734 0812 adpu320 - ok
10:28:44.0750 0812 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
10:28:44.0750 0812 AeLookupSvc - ok
10:28:44.0796 0812 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
10:28:44.0796 0812 AFD - ok
10:28:44.0812 0812 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
10:28:44.0812 0812 agp440 - ok
10:28:44.0828 0812 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
10:28:44.0828 0812 aic78xx - ok
10:28:44.0843 0812 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
10:28:44.0843 0812 ALG - ok
10:28:44.0843 0812 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
10:28:44.0843 0812 aliide - ok
10:28:44.0874 0812 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
10:28:44.0890 0812 amdagp - ok
10:28:44.0906 0812 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
10:28:44.0921 0812 amdide - ok
10:28:44.0952 0812 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
10:28:44.0952 0812 AmdK7 - ok
10:28:45.0124 0812 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
10:28:45.0124 0812 AmdK8 - ok
10:28:45.0140 0812 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
10:28:45.0140 0812 Appinfo - ok
10:28:45.0202 0812 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:28:45.0202 0812 Apple Mobile Device - ok
10:28:45.0264 0812 AppMgmt (0fe769cae5855b53c90e23f85e7e89ff) C:\Windows\System32\appmgmts.dll
10:28:45.0264 0812 AppMgmt - ok
10:28:45.0280 0812 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
10:28:45.0280 0812 arc - ok
10:28:45.0296 0812 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
10:28:45.0311 0812 arcsas - ok
10:28:45.0327 0812 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
10:28:45.0327 0812 AsyncMac - ok
10:28:45.0342 0812 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
10:28:45.0342 0812 atapi - ok
10:28:45.0389 0812 Ati External Event Utility (d864487ae93342d2ec1faac4becf87d4) C:\Windows\system32\Ati2evxx.exe
10:28:45.0389 0812 Ati External Event Utility - ok
10:28:45.0561 0812 atikmdag (42f8560fc8af7a34d39f746936d14b55) C:\Windows\system32\DRIVERS\atikmdag.sys
10:28:45.0576 0812 atikmdag - ok
10:28:45.0701 0812 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
10:28:45.0701 0812 AudioEndpointBuilder - ok
10:28:45.0701 0812 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
10:28:45.0717 0812 Audiosrv - ok
10:28:45.0748 0812 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
10:28:45.0748 0812 Beep - ok
10:28:45.0764 0812 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
10:28:45.0764 0812 BFE - ok
10:28:45.0842 0812 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
10:28:45.0842 0812 BITS - ok
10:28:45.0857 0812 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
10:28:45.0873 0812 blbdrive - ok
10:28:45.0951 0812 Bonjour Service (1c87705ccb2f60172b0fc86b5d82f00d) C:\Program Files\Bonjour\mDNSResponder.exe
10:28:45.0951 0812 Bonjour Service - ok
10:28:46.0029 0812 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
10:28:46.0029 0812 bowser - ok
10:28:46.0044 0812 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
10:28:46.0044 0812 BrFiltLo - ok
10:28:46.0060 0812 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
10:28:46.0060 0812 BrFiltUp - ok
10:28:46.0091 0812 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
10:28:46.0091 0812 Browser - ok
10:28:46.0107 0812 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
10:28:46.0138 0812 Brserid - ok
10:28:46.0169 0812 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
10:28:46.0169 0812 BrSerWdm - ok
10:28:46.0185 0812 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
10:28:46.0185 0812 BrUsbMdm - ok
10:28:46.0185 0812 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
10:28:46.0185 0812 BrUsbSer - ok
10:28:46.0232 0812 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
10:28:46.0232 0812 BthEnum - ok
10:28:46.0263 0812 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
10:28:46.0263 0812 BTHMODEM - ok
10:28:46.0294 0812 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
10:28:46.0294 0812 BthPan - ok
10:28:46.0341 0812 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
10:28:46.0341 0812 BTHPORT - ok
10:28:46.0403 0812 BthServ (a4c8377fa4a994e07075107dbe2e3dce) C:\Windows\System32\bthserv.dll
10:28:46.0403 0812 BthServ - ok
10:28:46.0419 0812 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
10:28:46.0419 0812 BTHUSB - ok
10:28:46.0450 0812 btwaudio (fc23e3a7ae18b02dcc1a34cbef3f80af) C:\Windows\system32\drivers\btwaudio.sys
10:28:46.0466 0812 btwaudio - ok
10:28:46.0497 0812 btwavdt (5e14c92763e51130bfb9a670afd7eddf) C:\Windows\system32\drivers\btwavdt.sys
10:28:46.0497 0812 btwavdt - ok
10:28:46.0512 0812 btwrchid (ac3fd5a3bbfa114098f75b80c4c1f3e7) C:\Windows\system32\DRIVERS\btwrchid.sys
10:28:46.0528 0812 btwrchid - ok
10:28:46.0637 0812 catchme - ok
10:28:46.0668 0812 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
10:28:46.0684 0812 cdfs - ok
10:28:46.0700 0812 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
10:28:46.0700 0812 cdrom - ok
10:28:46.0731 0812 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
10:28:46.0731 0812 CertPropSvc - ok
10:28:46.0746 0812 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
10:28:46.0746 0812 circlass - ok
10:28:46.0793 0812 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
10:28:46.0809 0812 CLFS - ok
10:28:46.0871 0812 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:28:46.0871 0812 clr_optimization_v2.0.50727_32 - ok
10:28:46.0934 0812 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:28:46.0965 0812 clr_optimization_v4.0.30319_32 - ok
10:28:46.0980 0812 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
10:28:46.0980 0812 cmdide - ok
10:28:46.0996 0812 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
10:28:46.0996 0812 Compbatt - ok
10:28:46.0996 0812 COMSysApp - ok
10:28:46.0996 0812 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
10:28:47.0012 0812 crcdisk - ok
10:28:47.0043 0812 Creative Labs Licensing Service (0c629820aad9c90e456b221c94d640ca) C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
10:28:47.0324 0812 Creative Labs Licensing Service - ok
10:28:47.0355 0812 Creative Service for CDROM Access (3c8b6609712f4ff78e521f6dcfc4032b) C:\Windows\system32\CTsvcCDA.exe
10:28:47.0355 0812 Creative Service for CDROM Access - ok
10:28:47.0370 0812 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
10:28:47.0370 0812 Crusoe - ok
10:28:47.0417 0812 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
10:28:47.0417 0812 CryptSvc - ok
10:28:47.0448 0812 CSC (9bdb2e89be8d0ef37b1f25c3d3fc192c) C:\Windows\system32\drivers\csc.sys
10:28:47.0464 0812 CSC - ok
10:28:47.0526 0812 CscService (0a2095f92f6ae4fe6484d911b0c21e95) C:\Windows\System32\cscsvc.dll
10:28:47.0526 0812 CscService - ok
10:28:47.0589 0812 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
10:28:47.0589 0812 DcomLaunch - ok
10:28:47.0667 0812 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
10:28:47.0667 0812 DfsC - ok
10:28:47.0792 0812 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
10:28:47.0807 0812 DFSR - ok
10:28:47.0901 0812 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
10:28:47.0901 0812 Dhcp - ok
10:28:47.0948 0812 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
10:28:47.0948 0812 disk - ok
10:28:47.0994 0812 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
10:28:47.0994 0812 Dnscache - ok
10:28:48.0041 0812 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
10:28:48.0041 0812 dot3svc - ok
10:28:48.0072 0812 dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
10:28:48.0072 0812 dot4 - ok
10:28:48.0088 0812 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:28:48.0088 0812 Dot4Print - ok
10:28:48.0088 0812 Dot4Scan (a84d8a9006b1ae515cc7b6b3586c295a) C:\Windows\system32\DRIVERS\Dot4Scan.sys
10:28:48.0088 0812 Dot4Scan - ok
10:28:48.0135 0812 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
10:28:48.0135 0812 dot4usb - ok
10:28:48.0166 0812 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
10:28:48.0166 0812 DPS - ok
10:28:48.0182 0812 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
10:28:48.0182 0812 drmkaud - ok
10:28:48.0260 0812 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
10:28:48.0260 0812 DXGKrnl - ok
10:28:48.0275 0812 e1express (04944f4fc4f0477185f5d26ae0ddb90e) C:\Windows\system32\DRIVERS\e1e6032.sys
10:28:48.0291 0812 e1express - ok
10:28:48.0306 0812 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
10:28:48.0322 0812 E1G60 - ok
10:28:48.0338 0812 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
10:28:48.0338 0812 EapHost - ok
10:28:48.0369 0812 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
10:28:48.0369 0812 Ecache - ok
10:28:48.0416 0812 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
10:28:48.0431 0812 ehRecvr - ok
10:28:48.0431 0812 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
10:28:48.0431 0812 ehSched - ok
10:28:48.0462 0812 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
10:28:48.0462 0812 ehstart - ok
10:28:48.0494 0812 ElRawDisk (e00cdaed2c0dbdc60c6e5d000dee01e9) C:\Windows\system32\drivers\ElRawDsk.sys
10:28:48.0494 0812 ElRawDisk - ok
10:28:48.0525 0812 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
10:28:48.0540 0812 elxstor - ok
10:28:48.0618 0812 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
10:28:48.0618 0812 EMDMgmt - ok
10:28:48.0650 0812 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
10:28:48.0650 0812 ErrDev - ok
10:28:48.0696 0812 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
10:28:48.0696 0812 EventSystem - ok
10:28:48.0743 0812 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
10:28:48.0743 0812 exfat - ok
10:28:48.0774 0812 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
10:28:48.0774 0812 fastfat - ok
10:28:48.0821 0812 Fax (dfba0f60fa301e5b1bfb1403a93ee23e) C:\Windows\system32\fxssvc.exe
10:28:48.0821 0812 Fax - ok
10:28:48.0837 0812 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
10:28:48.0837 0812 fdc - ok
10:28:48.0852 0812 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
10:28:48.0852 0812 fdPHost - ok
10:28:48.0852 0812 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
10:28:48.0852 0812 FDResPub - ok
10:28:48.0884 0812 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
10:28:48.0884 0812 FileInfo - ok
10:28:48.0899 0812 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
10:28:48.0899 0812 Filetrace - ok
10:28:48.0962 0812 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:28:48.0977 0812 FLEXnet Licensing Service - ok
10:28:49.0008 0812 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
10:28:49.0024 0812 flpydisk - ok
10:28:49.0055 0812 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
10:28:49.0055 0812 FltMgr - ok
10:28:49.0118 0812 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
10:28:49.0133 0812 FontCache - ok
10:28:49.0180 0812 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:28:49.0180 0812 FontCache3.0.0.0 - ok
10:28:49.0211 0812 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
10:28:49.0211 0812 Fs_Rec - ok
10:28:49.0227 0812 fvevol (fecf4c2e42440a8d132bf94eee3c3fc9) C:\Windows\system32\DRIVERS\fvevol.sys
10:28:49.0227 0812 fvevol - ok
10:28:49.0242 0812 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
10:28:49.0242 0812 gagp30kx - ok
10:28:49.0258 0812 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:28:49.0258 0812 GEARAspiWDM - ok
10:28:49.0305 0812 getPlusHelper (1dd4bb8f2110a8aeb1466a2805ae57bb) C:\Program Files\NOS\bin\getPlus_Helper.dll
10:28:49.0320 0812 getPlusHelper - ok
10:28:49.0352 0812 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
10:28:49.0352 0812 GoogleDesktopManager-051210-111108 - ok
10:28:49.0383 0812 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
10:28:49.0539 0812 GoToAssist - ok
10:28:49.0586 0812 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
10:28:49.0586 0812 gpsvc - ok
10:28:49.0664 0812 HCW85BDA (ac33be07397814a442dc305223de3524) C:\Windows\system32\drivers\HCW85BDA.sys
10:28:49.0679 0812 HCW85BDA - ok
10:28:49.0788 0812 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
10:28:49.0804 0812 HdAudAddService - ok
10:28:49.0866 0812 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:28:49.0866 0812 HDAudBus - ok
10:28:49.0882 0812 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
10:28:49.0882 0812 HidBth - ok
10:28:49.0898 0812 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
10:28:49.0898 0812 HidIr - ok
10:28:49.0929 0812 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
10:28:49.0929 0812 hidserv - ok
10:28:49.0960 0812 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
10:28:49.0960 0812 HidUsb - ok
10:28:49.0991 0812 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
10:28:49.0991 0812 hkmsvc - ok
10:28:49.0991 0812 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
10:28:49.0991 0812 HpCISSs - ok
10:28:50.0054 0812 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
10:28:50.0054 0812 HTTP - ok
10:28:50.0069 0812 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
10:28:50.0100 0812 i2omp - ok
10:28:50.0116 0812 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
10:28:50.0116 0812 i8042prt - ok
10:28:50.0210 0812 IAANTMON (72b53e9c8924949dec8f3799bcba2251) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
10:28:50.0210 0812 IAANTMON - ok
10:28:50.0241 0812 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\Windows\system32\drivers\iastor.sys
10:28:50.0241 0812 iaStor - ok
10:28:50.0428 0812 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
10:28:50.0459 0812 iaStorV - ok
10:28:50.0662 0812 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
10:28:50.0662 0812 IDriverT - ok
10:28:50.0834 0812 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:28:50.0865 0812 idsvc - ok
10:28:50.0880 0812 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
10:28:50.0880 0812 iirsp - ok
10:28:50.0943 0812 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
10:28:50.0943 0812 IKEEXT - ok
10:28:50.0974 0812 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
10:28:50.0990 0812 intelide - ok
10:28:51.0005 0812 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
10:28:51.0005 0812 intelppm - ok
10:28:51.0114 0812 ioloSystemService (440a02fa25be8dccd2103d820036eda1) C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
10:28:51.0114 0812 ioloSystemService - ok
10:28:51.0161 0812 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
10:28:51.0161 0812 IPBusEnum - ok
10:28:51.0177 0812 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:28:51.0177 0812 IpFilterDriver - ok
10:28:51.0224 0812 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
10:28:51.0224 0812 iphlpsvc - ok
10:28:51.0224 0812 IpInIp - ok
10:28:51.0255 0812 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
10:28:51.0255 0812 IPMIDRV - ok
10:28:51.0286 0812 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
10:28:51.0286 0812 IPNAT - ok
10:28:51.0348 0812 iPod Service (f62c69376a95795fe7cdb1c778edaca4) C:\Program Files\iPod\bin\iPodService.exe
10:28:51.0348 0812 iPod Service - ok
10:28:51.0364 0812 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
10:28:51.0364 0812 IRENUM - ok
10:28:51.0380 0812 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
10:28:51.0380 0812 isapnp - ok
10:28:51.0426 0812 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
10:28:51.0426 0812 iScsiPrt - ok
10:28:51.0426 0812 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
10:28:51.0426 0812 iteatapi - ok
10:28:51.0442 0812 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
10:28:51.0442 0812 iteraid - ok
10:28:51.0458 0812 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
10:28:51.0458 0812 kbdclass - ok
10:28:51.0489 0812 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
10:28:51.0489 0812 kbdhid - ok
10:28:51.0520 0812 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
10:28:51.0520 0812 KeyIso - ok
10:28:51.0551 0812 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
10:28:51.0567 0812 KSecDD - ok
10:28:51.0598 0812 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
10:28:51.0598 0812 KtmRm - ok
10:28:51.0629 0812 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
10:28:51.0629 0812 LanmanServer - ok
10:28:51.0676 0812 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
10:28:51.0676 0812 LanmanWorkstation - ok
10:28:51.0707 0812 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
10:28:51.0707 0812 lltdio - ok
10:28:51.0738 0812 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
10:28:51.0738 0812 lltdsvc - ok
10:28:51.0754 0812 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
10:28:51.0754 0812 lmhosts - ok
10:28:51.0785 0812 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
10:28:51.0785 0812 LSI_FC - ok
10:28:51.0801 0812 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
10:28:51.0816 0812 LSI_SAS - ok
10:28:51.0816 0812 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
10:28:51.0816 0812 LSI_SCSI - ok
10:28:51.0832 0812 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
10:28:51.0848 0812 luafv - ok
10:28:51.0863 0812 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
10:28:51.0863 0812 Mcx2Svc - ok
10:28:51.0879 0812 MDC8021X (d7010580bf4e45d5e793a1fe75758c69) C:\Windows\system32\DRIVERS\mdc8021x.sys
10:28:51.0879 0812 MDC8021X - ok
10:28:51.0894 0812 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
10:28:51.0894 0812 megasas - ok
10:28:51.0926 0812 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
10:28:51.0972 0812 MegaSR - ok
10:28:52.0004 0812 mferkdk (41fe2f288e05a6c8ab85dd56770ffbad) C:\Windows\system32\drivers\mferkdk.sys
10:28:52.0004 0812 mferkdk - ok
10:28:52.0019 0812 mfesmfk (096b52ea918aa909ba5903d79e129005) C:\Windows\system32\drivers\mfesmfk.sys
10:28:52.0035 0812 mfesmfk - ok
10:28:52.0066 0812 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
10:28:52.0066 0812 MMCSS - ok
10:28:52.0066 0812 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
10:28:52.0082 0812 Modem - ok
10:28:52.0097 0812 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
10:28:52.0097 0812 monitor - ok
10:28:52.0128 0812 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
10:28:52.0128 0812 mouclass - ok
10:28:52.0128 0812 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
10:28:52.0128 0812 mouhid - ok
10:28:52.0144 0812 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
10:28:52.0144 0812 MountMgr - ok
10:28:52.0175 0812 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
10:28:52.0175 0812 mpio - ok
10:28:52.0191 0812 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
10:28:52.0191 0812 mpsdrv - ok
10:28:52.0238 0812 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
10:28:52.0238 0812 MpsSvc - ok
10:28:52.0269 0812 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
10:28:52.0284 0812 Mraid35x - ok
10:28:52.0300 0812 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
10:28:52.0300 0812 MRxDAV - ok
10:28:52.0331 0812 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:28:52.0331 0812 mrxsmb - ok
10:28:52.0362 0812 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:28:52.0362 0812 mrxsmb10 - ok
10:28:52.0394 0812 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:28:52.0394 0812 mrxsmb20 - ok
10:28:52.0409 0812 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
10:28:52.0425 0812 msahci - ok
10:28:52.0440 0812 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
10:28:52.0440 0812 msdsm - ok
10:28:52.0456 0812 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
10:28:52.0503 0812 MSDTC - ok
10:28:52.0534 0812 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
10:28:52.0534 0812 Msfs - ok
10:28:52.0534 0812 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
10:28:52.0534 0812 msisadrv - ok
10:28:52.0565 0812 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
10:28:52.0596 0812 MSiSCSI - ok
10:28:52.0596 0812 msiserver - ok
10:28:52.0628 0812 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
10:28:52.0628 0812 MSKSSRV - ok
10:28:52.0628 0812 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
10:28:52.0643 0812 MSPCLOCK - ok
10:28:52.0674 0812 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
10:28:52.0674 0812 MSPQM - ok
10:28:52.0706 0812 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
10:28:52.0706 0812 MsRPC - ok
10:28:52.0721 0812 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
10:28:52.0721 0812 mssmbios - ok
10:28:52.0737 0812 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
10:28:52.0737 0812 MSTEE - ok
10:28:52.0768 0812 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
10:28:52.0768 0812 Mup - ok
10:28:52.0815 0812 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
10:28:52.0815 0812 napagent - ok
10:28:52.0877 0812 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
10:28:52.0893 0812 NativeWifiP - ok
10:28:52.0940 0812 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
10:28:52.0940 0812 NDIS - ok
10:28:52.0955 0812 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
10:28:52.0955 0812 NdisTapi - ok
10:28:52.0971 0812 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
10:28:52.0986 0812 Ndisuio - ok
10:28:53.0018 0812 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
10:28:53.0018 0812 NdisWan - ok
10:28:53.0033 0812 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
10:28:53.0033 0812 NDProxy - ok
10:28:53.0033 0812 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
10:28:53.0049 0812 NetBIOS - ok
10:28:53.0096 0812 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
10:28:53.0111 0812 netbt - ok
10:28:53.0127 0812 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
10:28:53.0127 0812 Netlogon - ok
10:28:53.0174 0812 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
10:28:53.0174 0812 Netman - ok
10:28:53.0205 0812 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
10:28:53.0205 0812 netprofm - ok
10:28:53.0267 0812 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:28:53.0283 0812 NetTcpPortSharing - ok
10:28:53.0298 0812 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
10:28:53.0298 0812 nfrd960 - ok
10:28:53.0330 0812 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
10:28:53.0330 0812 NlaSvc - ok
10:28:53.0361 0812 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
10:28:53.0361 0812 Npfs - ok
10:28:53.0392 0812 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
10:28:53.0392 0812 nsi - ok
10:28:53.0392 0812 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
10:28:53.0408 0812 nsiproxy - ok
10:28:53.0470 0812 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
10:28:53.0470 0812 Ntfs - ok
10:28:53.0501 0812 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
10:28:53.0501 0812 ntrigdigi - ok
10:28:53.0517 0812 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
10:28:53.0517 0812 Null - ok
10:28:53.0532 0812 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
10:28:53.0532 0812 nvraid - ok
10:28:53.0548 0812 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
10:28:53.0548 0812 nvstor - ok
10:28:53.0564 0812 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
10:28:53.0579 0812 nv_agp - ok
10:28:53.0579 0812 NwlnkFlt - ok
10:28:53.0579 0812 NwlnkFwd - ok
10:28:53.0673 0812 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:28:53.0688 0812 odserv - ok
10:28:53.0735 0812 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
10:28:53.0735 0812 ohci1394 - ok
10:28:53.0766 0812 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:28:53.0782 0812 ose - ok
10:28:53.0829 0812 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
10:28:53.0829 0812 p2pimsvc - ok
10:28:53.0844 0812 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
10:28:53.0844 0812 p2psvc - ok
10:28:53.0876 0812 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
10:28:53.0876 0812 Parport - ok
10:28:53.0907 0812 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
10:28:53.0907 0812 partmgr - ok
10:28:53.0938 0812 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
10:28:53.0938 0812 Parvdm - ok
10:28:53.0969 0812 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
10:28:53.0969 0812 PcaSvc - ok
10:28:54.0016 0812 PCDSRVC{E9D79540-57D5953E-06020101}_0 (92fddbed716bf5c3cb766101563cfce5) c:\program files\dell support center\pcdsrvc.pkms
10:28:54.0032 0812 PCDSRVC{E9D79540-57D5953E-06020101}_0 - ok
10:28:54.0078 0812 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
10:28:54.0078 0812 pci - ok
10:28:54.0094 0812 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
10:28:54.0094 0812 pciide - ok
10:28:54.0125 0812 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
10:28:54.0125 0812 pcmcia - ok
10:28:54.0172 0812 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
10:28:54.0219 0812 PEAUTH - ok
10:28:54.0297 0812 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
10:28:54.0297 0812 pla - ok
10:28:54.0390 0812 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
10:28:54.0406 0812 PlugPlay - ok
10:28:54.0437 0812 pmxmouse (fab495f1defeb596c44b9752a25e2a60) C:\Windows\system32\DRIVERS\pmxmouse.sys
10:28:54.0437 0812 pmxmouse - ok
10:28:54.0453 0812 pmxusblf (020eae9dfe3cd277994ce60e4c2c71cf) C:\Windows\system32\DRIVERS\pmxusblf.sys
10:28:54.0453 0812 pmxusblf - ok
10:28:54.0515 0812 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
10:28:54.0515 0812 PNRPAutoReg - ok
10:28:54.0531 0812 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
10:28:54.0531 0812 PNRPsvc - ok
10:28:54.0593 0812 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
10:28:54.0593 0812 PolicyAgent - ok
10:28:54.0624 0812 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
10:28:54.0624 0812 PptpMiniport - ok
10:28:54.0640 0812 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
10:28:54.0640 0812 Processor - ok
10:28:54.0671 0812 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
10:28:54.0671 0812 ProfSvc - ok
10:28:54.0702 0812 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
10:28:54.0702 0812 ProtectedStorage - ok
10:28:54.0734 0812 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
10:28:54.0734 0812 PSched - ok
10:28:54.0765 0812 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys
10:28:54.0765 0812 PxHelp20 - ok
10:28:54.0827 0812 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
10:28:54.0843 0812 ql2300 - ok
10:28:54.0874 0812 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
10:28:54.0874 0812 ql40xx - ok
10:28:54.0890 0812 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
10:28:54.0905 0812 QWAVE - ok
10:28:54.0936 0812 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
10:28:54.0936 0812 QWAVEdrv - ok
10:28:55.0092 0812 R300 (42f8560fc8af7a34d39f746936d14b55) C:\Windows\system32\DRIVERS\atikmdag.sys
10:28:55.0108 0812 R300 - ok
10:28:55.0186 0812 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
10:28:55.0186 0812 RasAcd - ok
10:28:55.0217 0812 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
10:28:55.0217 0812 RasAuto - ok
10:28:55.0233 0812 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:28:55.0233 0812 Rasl2tp - ok
10:28:55.0280 0812 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
10:28:55.0280 0812 RasMan - ok
10:28:55.0311 0812 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
10:28:55.0326 0812 RasPppoe - ok
10:28:55.0358 0812 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
10:28:55.0358 0812 RasSstp - ok
10:28:55.0404 0812 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
10:28:55.0404 0812 rdbss - ok
10:28:55.0420 0812 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:28:55.0420 0812 RDPCDD - ok
10:28:55.0467 0812 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\DRIVERS\rdpdr.sys
10:28:55.0467 0812 rdpdr - ok
10:28:55.0467 0812 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
10:28:55.0467 0812 RDPENCDD - ok
10:28:55.0498 0812 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
10:28:55.0498 0812 RDPWD - ok
10:28:55.0514 0812 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
10:28:55.0514 0812 RemoteAccess - ok
10:28:55.0560 0812 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
10:28:55.0560 0812 RemoteRegistry - ok
10:28:55.0592 0812 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
10:28:55.0592 0812 RFCOMM - ok
10:28:55.0607 0812 RimUsb (f17713d108aca124a139fde877eef68a) C:\Windows\system32\Drivers\RimUsb.sys
10:28:55.0607 0812 RimUsb - ok
10:28:55.0654 0812 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\Windows\system32\DRIVERS\RimSerial.sys
10:28:55.0654 0812 RimVSerPort - ok
10:28:55.0654 0812 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
10:28:55.0654 0812 ROOTMODEM - ok
10:28:55.0763 0812 RoxLiveShare10 (eb9717acdb9b70ccf61684ebcf9da6a3) C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
10:28:55.0794 0812 RoxLiveShare10 - ok
10:28:55.0841 0812 RoxMediaDB10 (64a8759e9b7e5467f60cb729b1ec352e) C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
10:28:55.0857 0812 RoxMediaDB10 - ok
10:28:55.0888 0812 RoxWatch10 (2884dda6ed8e8fd88568d924a79a9b30) C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
10:28:55.0904 0812 RoxWatch10 - ok
10:28:55.0982 0812 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
10:28:55.0982 0812 RpcLocator - ok
10:28:56.0028 0812 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\System32\rpcss.dll
10:28:56.0028 0812 RpcSs - ok
10:28:56.0106 0812 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
10:28:56.0106 0812 rspndr - ok
10:28:56.0138 0812 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
10:28:56.0138 0812 SamSs - ok
10:28:56.0294 0812 SBAMSvc (e15ad7eaa6f6b22ad603339dac7cba74) C:\Program Files\Sunbelt Software\VIPRE\SBAMSvc.exe
10:28:56.0309 0812 SBAMSvc - ok
10:28:56.0372 0812 sbapifs (6b650ed23a6677e197cdfc8a99cfcd8c) C:\Windows\system32\DRIVERS\sbapifs.sys
10:28:56.0403 0812 sbapifs - ok
10:28:56.0434 0812 SbFw (9c9bcc79aef0aa97f16766c498002d36) C:\Windows\system32\drivers\SbFw.sys
10:28:56.0465 0812 SbFw - ok
10:28:56.0496 0812 SBFWIMCL (f27b38d70b7621378161d6f48be04d2c) C:\Windows\system32\DRIVERS\sbfwim.sys
10:28:56.0496 0812 SBFWIMCL - ok
10:28:56.0559 0812 SbHips (53e5e7dc26bb920b97f258bbd52abfdc) C:\Windows\system32\drivers\sbhips.sys
10:28:56.0559 0812 SbHips - ok
10:28:56.0590 0812 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
10:28:56.0590 0812 sbp2port - ok
10:28:56.0668 0812 SBPIMSvc (fb01a1137a8abdf636df41fc0f1afe53) C:\Program Files\Sunbelt Software\VIPRE\SBPIMSvc.exe
10:28:56.0668 0812 SBPIMSvc - ok
10:28:56.0684 0812 SBRE (16b11c7940182163d680284ebd0b5342) C:\Windows\system32\drivers\SBREdrv.sys
10:28:56.0699 0812 SBRE - ok
10:28:56.0715 0812 SbTis (6468e2973e04525decc105947ddd0d34) C:\Windows\system32\drivers\sbtis.sys
10:28:56.0715 0812 SbTis - ok
10:28:56.0762 0812 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
10:28:56.0762 0812 SCardSvr - ok
10:28:56.0824 0812 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
10:28:56.0824 0812 Schedule - ok
10:28:56.0855 0812 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
10:28:56.0855 0812 SCPolicySvc - ok
10:28:56.0886 0812 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
10:28:56.0886 0812 SDRSVC - ok
10:28:56.0902 0812 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
10:28:56.0918 0812 secdrv - ok
10:28:56.0949 0812 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
10:28:56.0949 0812 seclogon - ok
10:28:56.0964 0812 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
10:28:56.0964 0812 SENS - ok
10:28:56.0996 0812 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
10:28:56.0996 0812 Serenum - ok
10:28:57.0011 0812 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
10:28:57.0011 0812 Serial - ok
10:28:57.0027 0812 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
10:28:57.0027 0812 sermouse - ok
10:28:57.0042 0812 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
10:28:57.0058 0812 SessionEnv - ok
10:28:57.0074 0812 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
10:28:57.0074 0812 sffdisk - ok
10:28:57.0074 0812 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
10:28:57.0089 0812 sffp_mmc - ok
10:28:57.0089 0812 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
10:28:57.0089 0812 sffp_sd - ok
10:28:57.0105 0812 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
10:28:57.0120 0812 sfloppy - ok
10:28:57.0167 0812 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
10:28:57.0167 0812 SharedAccess - ok
10:28:57.0245 0812 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
10:28:57.0245 0812 ShellHWDetection - ok
10:28:57.0276 0812 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
10:28:57.0276 0812 sisagp - ok
10:28:57.0308 0812 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
10:28:57.0308 0812 SiSRaid2 - ok
10:28:57.0339 0812 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
10:28:57.0339 0812 SiSRaid4 - ok
10:28:57.0495 0812 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
10:28:57.0526 0812 slsvc - ok
10:28:57.0620 0812 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
10:28:57.0635 0812 SLUINotify - ok
10:28:57.0682 0812 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
10:28:57.0682 0812 Smb - ok
10:28:57.0713 0812 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
10:28:57.0713 0812 SNMPTRAP - ok
10:28:57.0729 0812 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
10:28:57.0729 0812 spldr - ok
10:28:57.0776 0812 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
10:28:57.0776 0812 Spooler - ok
10:28:57.0822 0812 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
10:28:57.0822 0812 srv - ok
10:28:57.0854 0812 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
10:28:57.0854 0812 srv2 - ok
10:28:57.0869 0812 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
10:28:57.0885 0812 srvnet - ok
10:28:57.0885 0812 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
10:28:57.0900 0812 SSDPSRV - ok
10:28:57.0932 0812 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
10:28:57.0932 0812 SstpSvc - ok
10:28:57.0932 0812 STHDA - ok
10:28:57.0963 0812 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
10:28:57.0963 0812 StillCam - ok
10:28:58.0010 0812 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
10:28:58.0010 0812 stisvc - ok
10:28:58.0072 0812 stllssvr (7489520e98a119b5a9a00857f4f87d16) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
10:28:58.0088 0812 stllssvr - ok
10:28:58.0103 0812 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
10:28:58.0103 0812 swenum - ok
10:28:58.0166 0812 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
10:28:58.0166 0812 swprv - ok
10:28:58.0181 0812 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
10:28:58.0181 0812 Symc8xx - ok
10:28:58.0197 0812 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
10:28:58.0197 0812 Sym_hi - ok
10:28:58.0212 0812 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
10:28:58.0212 0812 Sym_u3 - ok
10:28:58.0259 0812 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
10:28:58.0275 0812 SysMain - ok
10:28:58.0290 0812 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
10:28:58.0290 0812 TabletInputService - ok
10:28:58.0353 0812 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
10:28:58.0353 0812 TapiSrv - ok
10:28:58.0353 0812 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
10:28:58.0368 0812 TBS - ok
10:28:58.0431 0812 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
10:28:58.0431 0812 Tcpip - ok
10:28:58.0446 0812 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
10:28:58.0446 0812 Tcpip6 - ok
10:28:58.0478 0812 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
10:28:58.0478 0812 tcpipreg - ok
10:28:58.0493 0812 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
10:28:58.0493 0812 TDPIPE - ok
10:28:58.0493 0812 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
10:28:58.0493 0812 TDTCP - ok
10:28:58.0524 0812 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
10:28:58.0524 0812 tdx - ok
10:28:58.0540 0812 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
10:28:58.0540 0812 TermDD - ok
10:28:58.0602 0812 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
10:28:58.0602 0812 TermService - ok
10:28:58.0665 0812 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
10:28:58.0680 0812 Themes - ok
10:28:58.0696 0812 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
10:28:58.0696 0812 THREADORDER - ok
10:28:58.0712 0812 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
10:28:58.0712 0812 TrkWks - ok
10:28:58.0774 0812 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
10:28:58.0774 0812 TrustedInstaller - ok
10:28:58.0805 0812 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:28:58.0805 0812 tssecsrv - ok
10:28:58.0821 0812 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
10:28:58.0821 0812 tunmp - ok
10:28:58.0852 0812 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
10:28:58.0852 0812 tunnel - ok
10:28:58.0868 0812 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
10:28:58.0868 0812 uagp35 - ok
10:28:58.0914 0812 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
10:28:58.0930 0812 udfs - ok
10:28:58.0946 0812 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
10:28:58.0946 0812 UI0Detect - ok
10:28:58.0961 0812 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
10:28:58.0961 0812 uliagpkx - ok
10:28:58.0992 0812 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
10:28:58.0992 0812 uliahci - ok
10:28:59.0008 0812 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
10:28:59.0008 0812 UlSata - ok
10:28:59.0008 0812 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
10:28:59.0024 0812 ulsata2 - ok
10:28:59.0024 0812 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
10:28:59.0024 0812 umbus - ok
10:28:59.0086 0812 UmRdpService (8a66360f38f81e960e2367b428cbd5d9) C:\Windows\System32\umrdp.dll
10:28:59.0086 0812 UmRdpService - ok
10:28:59.0102 0812 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
10:28:59.0102 0812 upnphost - ok
10:28:59.0133 0812 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
10:28:59.0133 0812 USBAAPL - ok
10:28:59.0148 0812 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
10:28:59.0148 0812 usbccgp - ok
10:28:59.0164 0812 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
10:28:59.0164 0812 usbcir - ok
10:28:59.0211 0812 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
10:28:59.0211 0812 usbehci - ok
10:28:59.0226 0812 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
10:28:59.0226 0812 usbhub - ok
10:28:59.0242 0812 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
10:28:59.0242 0812 usbohci - ok
10:28:59.0258 0812 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
10:28:59.0258 0812 usbprint - ok
10:28:59.0273 0812 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:28:59.0273 0812 USBSTOR - ok
10:28:59.0273 0812 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
10:28:59.0273 0812 usbuhci - ok
10:28:59.0320 0812 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
10:28:59.0320 0812 UxSms - ok
10:28:59.0382 0812 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
10:28:59.0382 0812 vds - ok
10:28:59.0398 0812 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
10:28:59.0398 0812 vga - ok
10:28:59.0414 0812 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
10:28:59.0414 0812 VgaSave - ok
10:28:59.0429 0812 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
10:28:59.0429 0812 viaagp - ok
10:28:59.0445 0812 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
10:28:59.0445 0812 ViaC7 - ok
10:28:59.0460 0812 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
10:28:59.0460 0812 viaide - ok
10:28:59.0476 0812 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
10:28:59.0476 0812 volmgr - ok
10:28:59.0523 0812 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
10:28:59.0523 0812 volmgrx - ok
10:28:59.0554 0812 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
10:28:59.0554 0812 volsnap - ok
10:28:59.0585 0812 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
10:28:59.0585 0812 vsmraid - ok
10:28:59.0663 0812 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
10:28:59.0663 0812 VSS - ok
10:28:59.0726 0812 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
10:28:59.0726 0812 W32Time - ok
10:28:59.0757 0812 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
10:28:59.0757 0812 WacomPen - ok
10:28:59.0772 0812 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:28:59.0788 0812 Wanarp - ok
10:28:59.0788 0812 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:28:59.0804 0812 Wanarpv6 - ok
10:28:59.0850 0812 wbengine (20b23332885dfb93fe0185362ee811e9) C:\Windows\system32\wbengine.exe
10:28:59.0866 0812 wbengine - ok
10:28:59.0913 0812 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
10:28:59.0913 0812 wcncsvc - ok
10:28:59.0960 0812 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
10:28:59.0960 0812 WcsPlugInService - ok
10:28:59.0991 0812 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
10:28:59.0991 0812 Wd - ok
10:29:00.0038 0812 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
10:29:00.0053 0812 Wdf01000 - ok
10:29:00.0053 0812 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
10:29:00.0053 0812 WdiServiceHost - ok
10:29:00.0069 0812 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
10:29:00.0069 0812 WdiSystemHost - ok
10:29:00.0100 0812 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
10:29:00.0116 0812 WebClient - ok
10:29:00.0147 0812 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
10:29:00.0147 0812 Wecsvc - ok
10:29:00.0178 0812 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
10:29:00.0178 0812 wercplsupport - ok
10:29:00.0225 0812 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
10:29:00.0225 0812 WerSvc - ok
10:29:00.0272 0812 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
10:29:00.0303 0812 WinDefend - ok
10:29:00.0303 0812 WinHttpAutoProxySvc - ok
10:29:00.0381 0812 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
10:29:00.0381 0812 Winmgmt - ok
10:29:00.0474 0812 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
10:29:00.0474 0812 WinRM - ok
10:29:00.0521 0812 WinUsb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.SYS
10:29:00.0537 0812 WinUsb - ok
10:29:00.0568 0812 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
10:29:00.0568 0812 Wlansvc - ok
10:29:00.0615 0812 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
10:29:00.0615 0812 WmiAcpi - ok
10:29:00.0662 0812 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
10:29:00.0662 0812 wmiApSrv - ok
10:29:00.0755 0812 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
10:29:00.0755 0812 WMPNetworkSvc - ok
10:29:00.0771 0812 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
10:29:00.0771 0812 WPCSvc - ok
10:29:00.0818 0812 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
10:29:00.0818 0812 WPDBusEnum - ok
10:29:00.0880 0812 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
10:29:00.0880 0812 WpdUsb - ok
10:29:01.0020 0812 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:29:01.0020 0812 WPFFontCache_v0400 - ok
10:29:01.0067 0812 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
10:29:01.0067 0812 ws2ifsl - ok
10:29:01.0098 0812 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
10:29:01.0098 0812 wscsvc - ok
10:29:01.0098 0812 WSearch - ok
10:29:01.0223 0812 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
10:29:01.0239 0812 wuauserv - ok
10:29:01.0301 0812 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:29:01.0301 0812 WUDFRd - ok
10:29:01.0332 0812 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
10:29:01.0332 0812 wudfsvc - ok
10:29:01.0426 0812 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
10:29:01.0426 0812 YahooAUService - ok
10:29:01.0473 0812 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} (556b5cfe8d21b256add7f87d7f4b4123) C:\Program Files\CyberLink\PowerDVD DX\000.fcl
10:29:01.0488 0812 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
10:29:01.0488 0812 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
10:29:01.0613 0812 \Device\Harddisk0\DR0 - ok
10:29:01.0629 0812 Boot (0x1200) (ea0b42463064d045033785b4dbf8740e) \Device\Harddisk0\DR0\Partition0
10:29:01.0629 0812 \Device\Harddisk0\DR0\Partition0 - ok
10:29:01.0629 0812 Boot (0x1200) (78e1dc3d55cf0fff20dbe84e73457df1) \Device\Harddisk0\DR0\Partition1
10:29:01.0644 0812 \Device\Harddisk0\DR0\Partition1 - ok
10:29:01.0644 0812 ============================================================
10:29:01.0644 0812 Scan finished
10:29:01.0644 0812 ============================================================
10:29:01.0644 5016 Detected object count: 0
10:29:01.0644 5016 Actual detected object count: 0
10:29:50.0504 0184 Deinitialize success

#4 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 15 May 2012 - 11:20 AM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-15 11:51:10
-----------------------------
11:51:10.673 OS Version: Windows 6.0.6002 Service Pack 2
11:51:10.673 Number of processors: 4 586 0xF0B
11:51:10.673 ComputerName: DREE-PC UserName: Dree
11:51:55.445 Initialize success
12:04:26.999 AVAST engine defs: 12051500

#5 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 15 May 2012 - 11:23 AM

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-05-15 11:46:29
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST350063 rev.3.AD
Running: download[1].exe; Driver: C:\Users\Dree\AppData\Local\Temp\pxldapow.sys


---- Kernel code sections - GMER 1.0.15 ----

.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x8F408000, 0x1E7D40, 0xE8000020]
.text C:\Program Files\CyberLink\PowerDVD DX\000.fcl section is writeable [0x9EEFD000, 0x2892, 0xE8000020]
.vmp2 C:\Program Files\CyberLink\PowerDVD DX\000.fcl entry point in ".vmp2" section [0x9EF20050]

---- User code sections - GMER 1.0.15 ----

.text C:\Windows\ehome\ehmsas.exe[2340] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00163630
.text C:\Windows\ehome\ehmsas.exe[2340] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00163670
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[2424] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 01B83630
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[2424] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 01B83670
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[2424] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 01B839B0
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[2424] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 01B83810
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[2424] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 01B83870
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[2424] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 01B837B0
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe[2424] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 01B83700
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 041F3630
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 041F3670
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!CreateWindowExW 76941305 5 Bytes JMP 6CB1DB14 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!DialogBoxParamW 769610B0 5 Bytes JMP 6CA45505 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!DialogBoxIndirectParamW 76962EF5 5 Bytes JMP 6CC153AF C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!DialogBoxParamA 76978152 5 Bytes JMP 6CC1534C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!DialogBoxIndirectParamA 7697847D 5 Bytes JMP 6CC15412 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!MessageBoxIndirectA 7698D4D9 5 Bytes JMP 6CC152E1 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!MessageBoxIndirectW 7698D5D3 5 Bytes JMP 6CC15276 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!MessageBoxExA 7698D639 5 Bytes JMP 6CC15214 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] USER32.dll!MessageBoxExW 7698D65D 5 Bytes JMP 6CC151B2 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 041F39B0
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 041F3810
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 041F3870
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 041F37B0
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 041F3700
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!select 773815F4 5 Bytes JMP 041F3C30
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!closesocket 7738330C 5 Bytes JMP 041F3C40
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!recv 7738343A 5 Bytes JMP 041F3AD0
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!connect 773840D9 5 Bytes JMP 041F39D0
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 041F3C70
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!WSASend 77384496 5 Bytes JMP 041F3A70
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!send 7738659B 5 Bytes JMP 041F3A20
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!WSARecv 77388400 5 Bytes JMP 041F3B70
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] ws2_32.dll!gethostbyname 773962D4 5 Bytes JMP 041F3CD0
.text C:\Program Files\Internet Explorer\iexplore.exe[2440] crypt32.dll!PFXImportCertStore 75189521 5 Bytes JMP 041F33E0
.text C:\Windows\System32\rundll32.exe[2672] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 007F3630
.text C:\Windows\System32\rundll32.exe[2672] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 007F3670
.text C:\Windows\System32\rundll32.exe[2672] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 007F39B0
.text C:\Windows\System32\rundll32.exe[2672] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 007F3810
.text C:\Windows\System32\rundll32.exe[2672] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 007F3870
.text C:\Windows\System32\rundll32.exe[2672] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 007F37B0
.text C:\Windows\System32\rundll32.exe[2672] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 007F3700
.text C:\Windows\System32\rundll32.exe[2672] crypt32.dll!PFXImportCertStore 75189521 5 Bytes JMP 007F33E0
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!select 773815F4 5 Bytes JMP 007F3C30
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!closesocket 7738330C 5 Bytes JMP 007F3C40
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!recv 7738343A 5 Bytes JMP 007F3AD0
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!connect 773840D9 5 Bytes JMP 007F39D0
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 007F3C70
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!WSASend 77384496 5 Bytes JMP 007F3A70
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!send 7738659B 5 Bytes JMP 007F3A20
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!WSARecv 77388400 5 Bytes JMP 007F3B70
.text C:\Windows\System32\rundll32.exe[2672] ws2_32.dll!gethostbyname 773962D4 5 Bytes JMP 007F3CD0
.text C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE[3016] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00193630
.text C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE[3016] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00193670
.text C:\Windows\system32\Dwm.exe[3500] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00973630
.text C:\Windows\system32\Dwm.exe[3500] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00973670
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!select 773815F4 5 Bytes JMP 00973C30
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 00973C40
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!recv 7738343A 5 Bytes JMP 00973AD0
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!connect 773840D9 5 Bytes JMP 009739D0
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 00973C70
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!WSASend 77384496 5 Bytes JMP 00973A70
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!send 7738659B 5 Bytes JMP 00973A20
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 00973B70
.text C:\Windows\system32\Dwm.exe[3500] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 00973CD0
.text C:\Windows\system32\taskeng.exe[3556] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 02613630
.text C:\Windows\system32\taskeng.exe[3556] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 02613670
.text C:\Windows\system32\taskeng.exe[3556] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 026139B0
.text C:\Windows\system32\taskeng.exe[3556] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 02613810
.text C:\Windows\system32\taskeng.exe[3556] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 02613870
.text C:\Windows\system32\taskeng.exe[3556] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 026137B0
.text C:\Windows\system32\taskeng.exe[3556] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 02613700
.text C:\Windows\system32\taskeng.exe[3556] CRYPT32.dll!PFXImportCertStore 75189521 5 Bytes JMP 026133E0
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!select 773815F4 5 Bytes JMP 02613C30
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 02613C40
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!recv 7738343A 5 Bytes JMP 02613AD0
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!connect 773840D9 5 Bytes JMP 026139D0
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 02613C70
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!WSASend 77384496 5 Bytes JMP 02613A70
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!send 7738659B 5 Bytes JMP 02613A20
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 02613B70
.text C:\Windows\system32\taskeng.exe[3556] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 02613CD0
.text C:\Windows\Explorer.EXE[3576] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 034E3630
.text C:\Windows\Explorer.EXE[3576] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 034E3670
.text C:\Windows\Explorer.EXE[3576] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 034E39B0
.text C:\Windows\Explorer.EXE[3576] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 034E3810
.text C:\Windows\Explorer.EXE[3576] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 034E3870
.text C:\Windows\Explorer.EXE[3576] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 034E37B0
.text C:\Windows\Explorer.EXE[3576] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 034E3700
.text C:\Windows\Explorer.EXE[3576] CRYPT32.dll!PFXImportCertStore 75189521 5 Bytes JMP 034E33E0
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!select 773815F4 5 Bytes JMP 034E3C30
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 034E3C40
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!recv 7738343A 5 Bytes JMP 034E3AD0
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!connect 773840D9 5 Bytes JMP 034E39D0
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 034E3C70
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!WSASend 77384496 5 Bytes JMP 034E3A70
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!send 7738659B 5 Bytes JMP 034E3A20
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 034E3B70
.text C:\Windows\Explorer.EXE[3576] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 034E3CD0
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00043630
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00043670
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!CreateDialogParamW 769372A2 5 Bytes JMP 6CB1DEA0 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!GetAsyncKeyState 7693863C 5 Bytes JMP 6CA38F27 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!SetWindowsHookExW 769387AD 5 Bytes JMP 6CB19AA5 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!CallNextHookEx 76938E3B 5 Bytes JMP 6CB0D119 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!UnhookWindowsHookEx 769398DB 5 Bytes JMP 6CA84686 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!EnableWindow 7693CD8B 5 Bytes JMP 6CB1DD2D C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!CreateWindowExW 76941305 5 Bytes JMP 02978F70
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!GetKeyState 76948CB1 5 Bytes JMP 6CB1D2DB C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!IsDialogMessageW 76950745 5 Bytes JMP 6CA45A17 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!CreateDialogParamA 769517AA 5 Bytes JMP 6CC1601B C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!IsDialogMessage 76951847 5 Bytes JMP 6CC158B7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!CreateDialogIndirectParamA 769526F1 5 Bytes JMP 6CC16052 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!CreateDialogIndirectParamW 76959A62 5 Bytes JMP 6CC16089 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!SetKeyboardState 76960987 5 Bytes JMP 6CC15C26 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!DialogBoxParamW 769610B0 5 Bytes JMP 6CA45505 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!DialogBoxIndirectParamW 76962EF5 5 Bytes JMP 6CC153AF C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!SendInput 76962F75 5 Bytes JMP 6CC167E3 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!EndDialog 7696326E 5 Bytes JMP 6CA47EC2 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!SetCursorPos 76976FB2 5 Bytes JMP 6CC16837 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!DialogBoxParamA 76978152 5 Bytes JMP 6CC1534C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!DialogBoxIndirectParamA 7697847D 5 Bytes JMP 6CC15412 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!MessageBoxIndirectA 7698D4D9 5 Bytes JMP 6CC152E1 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!MessageBoxIndirectW 7698D5D3 5 Bytes JMP 6CC15276 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!MessageBoxExA 7698D639 5 Bytes JMP 6CC15214 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!MessageBoxExW 7698D65D 5 Bytes JMP 6CC151B2 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] USER32.dll!keybd_event 7698D972 5 Bytes JMP 6CC16B67 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] SHELL32.dll!SHRestricted + D95 75A489A8 4 Bytes [4D, 30, 6C, 6C]
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] SHELL32.dll!SHRestricted + D9D 75A489B0 8 Bytes [57, 2F, 6C, 6C, 9C, 5B, 6B, ...]
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ole32.dll!OleLoadFromStream 76631E80 5 Bytes JMP 6CC15717 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ole32.dll!CoCreateInstance 76669F3E 5 Bytes JMP 6CB1DB70 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] WININET.dll!HttpAddRequestHeadersA 76E3CF5E 5 Bytes JMP 02978428
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] crypt32.dll!PFXImportCertStore 75189521 5 Bytes JMP 000433E0
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 000439B0
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 00043810
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 00043870
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 000437B0
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 00043700
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!select 773815F4 5 Bytes JMP 00043C30
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!closesocket 7738330C 5 Bytes JMP 00043C40
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!recv 7738343A 5 Bytes JMP 00043AD0
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!connect 773840D9 5 Bytes JMP 000439D0
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 00043C70
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!WSASend 77384496 5 Bytes JMP 02933D08
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!send 7738659B 5 Bytes JMP 029329C0
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!WSARecv 77388400 5 Bytes JMP 00043B70
.text C:\Program Files\Internet Explorer\iexplore.exe[3608] ws2_32.dll!gethostbyname 773962D4 5 Bytes JMP 00043CD0
.text C:\Windows\System32\ico.exe[3752] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00373630
.text C:\Windows\System32\ico.exe[3752] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00373670
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 03143630
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 03143670
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!select 773815F4 5 Bytes JMP 03143C30
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 03143C40
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!recv 7738343A 5 Bytes JMP 03143AD0
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!connect 773840D9 5 Bytes JMP 031439D0
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 03143C70
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!WSASend 77384496 5 Bytes JMP 03143A70
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!send 7738659B 5 Bytes JMP 03143A20
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 03143B70
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 03143CD0
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] CRYPT32.dll!PFXImportCertStore 75189521 5 Bytes JMP 031433E0
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 031439B0
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 03143810
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 03143870
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 031437B0
.text C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe[3768] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 03143700
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00913630
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00913670
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!select 773815F4 5 Bytes JMP 00913C30
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 00913C40
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!recv 7738343A 5 Bytes JMP 00913AD0
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!connect 773840D9 5 Bytes JMP 009139D0
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 00913C70
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!WSASend 77384496 5 Bytes JMP 00913A70
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!send 7738659B 5 Bytes JMP 00913A20
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 00913B70
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 00913CD0
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 009139B0
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 00913810
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 00913870
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 009137B0
.text C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe[3804] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 00913700
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 003C3630
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 003C3670
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 003C39B0
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 003C3810
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 003C3870
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 003C37B0
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 003C3700
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!select 773815F4 5 Bytes JMP 003C3C30
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 003C3C40
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!recv 7738343A 5 Bytes JMP 003C3AD0
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!connect 773840D9 5 Bytes JMP 003C39D0
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 003C3C70
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!WSASend 77384496 5 Bytes JMP 003C3A70
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!send 7738659B 5 Bytes JMP 003C3A20
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 003C3B70
.text C:\Program Files\Common Files\Real\Update_OB\realsched.exe[3916] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 003C3CD0
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 01D33630
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 01D33670
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 01D339B0
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 01D33810
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 01D33870
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 01D337B0
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 01D33700
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!select 773815F4 5 Bytes JMP 01D33C30
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 01D33C40
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!recv 7738343A 5 Bytes JMP 01D33AD0
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!connect 773840D9 5 Bytes JMP 01D339D0
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 01D33C70
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!WSASend 77384496 5 Bytes JMP 01D33A70
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!send 7738659B 5 Bytes JMP 01D33A20
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 01D33B70
.text C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE[3924] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 01D33CD0
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 01523630
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 01523670
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 015239B0
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 01523810
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 01523870
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 015237B0
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 01523700
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!select 773815F4 5 Bytes JMP 01523C30
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!closesocket 7738330C 5 Bytes JMP 01523C40
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!recv 7738343A 5 Bytes JMP 01523AD0
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!connect 773840D9 5 Bytes JMP 015239D0
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 01523C70
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!WSASend 77384496 5 Bytes JMP 01523A70
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!send 7738659B 5 Bytes JMP 01523A20
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!WSARecv 77388400 5 Bytes JMP 01523B70
.text C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe[3940] ws2_32.dll!gethostbyname 773962D4 5 Bytes JMP 01523CD0
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 01D63630
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 01D63670
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!select 773815F4 5 Bytes JMP 01D63C30
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 01D63C40
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!recv 7738343A 5 Bytes JMP 01D63AD0
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!connect 773840D9 5 Bytes JMP 01D639D0
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 01D63C70
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!WSASend 77384496 5 Bytes JMP 01D63A70
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!send 7738659B 5 Bytes JMP 01D63A20
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 01D63B70
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 01D63CD0
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 01D639B0
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 01D63810
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 01D63870
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 01D637B0
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 01D63700
.text C:\Program Files\iTunes\iTunesHelper.exe[3964] CRYPT32.dll!PFXImportCertStore 75189521 5 Bytes JMP 01D633E0
.text C:\Windows\ehome\ehtray.exe[3992] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 018F3630
.text C:\Windows\ehome\ehtray.exe[3992] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 018F3670
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 000C3630
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 000C3670
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 000C39B0
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 000C3810
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 000C3870
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 000C37B0
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 000C3700
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!select 773815F4 5 Bytes JMP 000C3C30
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!closesocket 7738330C 5 Bytes JMP 000C3C40
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!recv 7738343A 5 Bytes JMP 000C3AD0
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!connect 773840D9 5 Bytes JMP 000C39D0
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 000C3C70
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!WSASend 77384496 5 Bytes JMP 000C3A70
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!send 7738659B 5 Bytes JMP 000C3A20
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!WSARecv 77388400 5 Bytes JMP 000C3B70
.text C:\Program Files\Windows Media Player\wmpnscfg.exe[4016] WS2_32.dll!gethostbyname 773962D4 5 Bytes JMP 000C3CD0
.text C:\Windows\System32\rundll32.exe[4056] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00923630
.text C:\Windows\System32\rundll32.exe[4056] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00923670
.text C:\Windows\System32\rundll32.exe[4056] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 009239B0
.text C:\Windows\System32\rundll32.exe[4056] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 00923810
.text C:\Windows\System32\rundll32.exe[4056] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 00923870
.text C:\Windows\System32\rundll32.exe[4056] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 009237B0
.text C:\Windows\System32\rundll32.exe[4056] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 00923700
.text C:\Windows\System32\rundll32.exe[4056] crypt32.dll!PFXImportCertStore 75189521 5 Bytes JMP 009233E0
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!select 773815F4 5 Bytes JMP 00923C30
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!closesocket 7738330C 5 Bytes JMP 00923C40
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!recv 7738343A 5 Bytes JMP 00923AD0
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!connect 773840D9 5 Bytes JMP 009239D0
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 00923C70
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!WSASend 77384496 5 Bytes JMP 00923A70
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!send 7738659B 5 Bytes JMP 00923A20
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!WSARecv 77388400 5 Bytes JMP 00923B70
.text C:\Windows\System32\rundll32.exe[4056] ws2_32.dll!gethostbyname 773962D4 5 Bytes JMP 00923CD0
.text C:\Windows\System32\Pmxmiced.exe[4520] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00083630
.text C:\Windows\System32\Pmxmiced.exe[4520] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00083670
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00153630
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00153670
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] CRYPT32.dll!PFXImportCertStore 75189521 5 Bytes JMP 001533E0
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 001539B0
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 00153810
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 00153870
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 001537B0
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 00153700
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!select 773815F4 5 Bytes JMP 00153C30
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!closesocket 7738330C 5 Bytes JMP 00153C40
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!recv 7738343A 5 Bytes JMP 00153AD0
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!connect 773840D9 5 Bytes JMP 001539D0
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 00153C70
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!WSASend 77384496 5 Bytes JMP 00153A70
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!send 7738659B 5 Bytes JMP 00153A20
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!WSARecv 77388400 5 Bytes JMP 00153B70
.text C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe[5052] ws2_32.dll!gethostbyname 773962D4 5 Bytes JMP 00153CD0
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00043630
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00043670
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!CreateWindowExW 76941305 5 Bytes JMP 6CB1DB14 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!DialogBoxParamW 769610B0 5 Bytes JMP 6CA45505 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!DialogBoxIndirectParamW 76962EF5 5 Bytes JMP 6CC153AF C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!DialogBoxParamA 76978152 5 Bytes JMP 6CC1534C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!DialogBoxIndirectParamA 7697847D 5 Bytes JMP 6CC15412 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!MessageBoxIndirectA 7698D4D9 5 Bytes JMP 6CC152E1 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!MessageBoxIndirectW 7698D5D3 5 Bytes JMP 6CC15276 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!MessageBoxExA 7698D639 5 Bytes JMP 6CC15214 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] USER32.dll!MessageBoxExW 7698D65D 5 Bytes JMP 6CC151B2 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 000439B0
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 00043810
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 00043870
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 000437B0
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 00043700
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!select 773815F4 5 Bytes JMP 00043C30
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!closesocket 7738330C 5 Bytes JMP 00043C40
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!recv 7738343A 5 Bytes JMP 00043AD0
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!connect 773840D9 5 Bytes JMP 000439D0
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 00043C70
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!WSASend 77384496 5 Bytes JMP 00043A70
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!send 7738659B 5 Bytes JMP 00043A20
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!WSARecv 77388400 5 Bytes JMP 00043B70
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] ws2_32.dll!gethostbyname 773962D4 5 Bytes JMP 00043CD0
.text C:\Program Files\Internet Explorer\iexplore.exe[5352] crypt32.dll!PFXImportCertStore 75189521 5 Bytes JMP 000433E0
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ntdll.dll!LdrLoadDll 77179378 5 Bytes JMP 00163630
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ntdll.dll!NtResumeThread 771B5024 5 Bytes JMP 00163670
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!CreateDialogParamW 769372A2 5 Bytes JMP 6CB1DEA0 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!GetAsyncKeyState 7693863C 5 Bytes JMP 6CA38F27 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!SetWindowsHookExW 769387AD 5 Bytes JMP 6CB19AA5 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!CallNextHookEx 76938E3B 5 Bytes JMP 6CB0D119 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!UnhookWindowsHookEx 769398DB 5 Bytes JMP 6CA84686 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!EnableWindow 7693CD8B 5 Bytes JMP 6CB1DD2D C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!CreateWindowExW 76941305 5 Bytes JMP 02557ED0
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!GetKeyState 76948CB1 5 Bytes JMP 6CB1D2DB C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!IsDialogMessageW 76950745 5 Bytes JMP 6CA45A17 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!CreateDialogParamA 769517AA 5 Bytes JMP 6CC1601B C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!IsDialogMessage 76951847 5 Bytes JMP 6CC158B7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!CreateDialogIndirectParamA 769526F1 5 Bytes JMP 6CC16052 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!CreateDialogIndirectParamW 76959A62 5 Bytes JMP 6CC16089 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!SetKeyboardState 76960987 5 Bytes JMP 6CC15C26 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!DialogBoxParamW 769610B0 5 Bytes JMP 6CA45505 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!DialogBoxIndirectParamW 76962EF5 5 Bytes JMP 6CC153AF C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!SendInput 76962F75 5 Bytes JMP 6CC167E3 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!EndDialog 7696326E 5 Bytes JMP 6CA47EC2 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!SetCursorPos 76976FB2 5 Bytes JMP 6CC16837 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!DialogBoxParamA 76978152 5 Bytes JMP 6CC1534C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!DialogBoxIndirectParamA 7697847D 5 Bytes JMP 6CC15412 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!MessageBoxIndirectA 7698D4D9 5 Bytes JMP 6CC152E1 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!MessageBoxIndirectW 7698D5D3 5 Bytes JMP 6CC15276 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!MessageBoxExA 7698D639 5 Bytes JMP 6CC15214 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!MessageBoxExW 7698D65D 5 Bytes JMP 6CC151B2 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] USER32.dll!keybd_event 7698D972 5 Bytes JMP 6CC16B67 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] SHELL32.dll!SHRestricted + D95 75A489A8 4 Bytes [4D, 30, 6C, 6C]
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] SHELL32.dll!SHRestricted + D9D 75A489B0 8 Bytes [57, 2F, 6C, 6C, 9C, 5B, 6B, ...]
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ole32.dll!OleLoadFromStream 76631E80 5 Bytes JMP 6CC15717 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ole32.dll!CoCreateInstance 76669F3E 5 Bytes JMP 6CB1DB70 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] WININET.dll!HttpAddRequestHeadersA 76E3CF5E 5 Bytes JMP 02557388
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] crypt32.dll!PFXImportCertStore 75189521 5 Bytes JMP 001633E0
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] Secur32.dll!DeleteSecurityContext 75682F18 5 Bytes JMP 001639B0
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] Secur32.dll!EncryptMessage 75683745 5 Bytes JMP 00163810
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] Secur32.dll!DecryptMessage 75683813 5 Bytes JMP 00163870
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] Secur32.dll!InitializeSecurityContextW 7568427E 5 Bytes JMP 001637B0
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] Secur32.dll!InitializeSecurityContextA 756887DF 5 Bytes JMP 00163700
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!select 773815F4 5 Bytes JMP 00163C30
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!closesocket 7738330C 5 Bytes JMP 00163C40
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!recv 7738343A 5 Bytes JMP 00163AD0
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!connect 773840D9 5 Bytes JMP 001639D0
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!getaddrinfo 7738418A 5 Bytes JMP 00163C70
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!WSASend 77384496 5 Bytes JMP 02553D08
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!send 7738659B 5 Bytes JMP 025529C0
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!WSARecv 77388400 5 Bytes JMP 00163B70
.text C:\Program Files\Internet Explorer\iexplore.exe[5768] ws2_32.dll!gethostbyname 773962D4 5 Bytes JMP 00163CD0

--- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CopyFileW] [6C6AE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!MoveFileW] [6C6B0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [6C6AA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6C6B1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [6C6B2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6C6ADC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6C6AD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6C6BFBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegEnumValueW] [6C6C051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegOpenKeyExW] [6C6BEB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryValueExW] [6C6BF817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegDeleteKeyW] [6C6BEF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCreateKeyExW] [6C6BE5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCloseKey] [6C6BED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [6C6AE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileA] [6C6B2CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileA] [6C6B2926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileW] [6C6B2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesA] [6C6ABD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryA] [6C6B173F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesA] [6C6ABFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryA] [6C6B0F0F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryA] [6C6B14E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileA] [6C6AED1B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesW] [6C6ABEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryW] [6C6B1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesW] [6C6AC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryW] [6C6B103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileW] [6C6B0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryW] [6C6B1614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileA] [6C6B0921] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [6C6AA073] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [6C6AA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileA] [6C6AE717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [6C6B0C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [6C6ADC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [6C6AD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [6C6AD361] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [6C6AC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [6C6B2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [6C6ABEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [6C6ABFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [6C6AE717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [6C6B2CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [6C6B2926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [6C6B23A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [6C6ABD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpW] [6C6AFAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpA] [6C6AF973] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCloseKey] [6C6BED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExA] [6C6BE43D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyA] [6C6BEDE8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyA] [6C6BF9B7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExA] [6C6BE9C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExW] [6C6BE5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExW] [6C6BEB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExW] [6C6C020D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueW] [6C6BF4DB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyW] [6C6BEF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6C6BFBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExW] [6C6BF817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueW] [6C6C051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyW] [6C6BFF19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExA] [6C6C0085] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueA] [6C6C0395] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyA] [6C6BFDAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExA] [6C6BF677] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [6C6ACFA8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindNextFileW] [6C6B2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [6C6B0C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [6C6AD22A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [6C6AD9DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6C6ADC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [6C6AEB68] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6C6B1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [6C6AE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [6C6ACAA7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [6C6AA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [6C6B0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [6C6AC709] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesA] [6C6ABD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [6C6ACD20] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6C6AD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!RemoveDirectoryW] [6C6B1614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateDirectoryW] [6C6B103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetFileAttributesW] [6C6AC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesW] [6C6ABEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [6C6B09B9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameW] [6C6AC848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesExW] [6C6AC368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetLongPathNameW] [6C6AC5D8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [6C6AF0D0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [6C6AFAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [6C6AF5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [6C6B620B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [6C6B7595] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [6C6B60AE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [6C6B615B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [6C6B75E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [6C6B6533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [6C6B799A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [6C6B684F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [6C6B6E45] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [6C6B6AFB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [6C6B6B47] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [6C6B7281] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [6C6B6716] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [6C6B71ED] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [6C6B7021] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [6C6B7FBE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [6C6B7159] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [6C6B68E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsSystemFolderW] [6C6B6BE2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [6C6B6803] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [6C6B6F81] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [6C6B63A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [6C6B80BD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [6C6B8513] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [6C6B8176] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [6C6B65DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [6C6B7BA4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [6C6B8235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [6C6B697F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [6C6B6DAD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [6C6B6D15] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [6C6B731F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [6C6B6EDD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [6C6B6C7D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [6C6B6AAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [6C6B78EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [6C6B63F4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [6C6B76D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [6C6B8732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [6C6B777E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [6C6B7831] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [6C6B667B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [6C6B7636] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [6C6ABB38] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [6C6AA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetShortPathNameW] [6C6AC848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesExW] [6C6AC368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesW] [6C6ABEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [6C6B8235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [6C6B81D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [6C6B72CD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [6C6B75E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [6C6B76D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [6C6B65DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [6C6B788F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [6C6B86D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [6C6B78EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [6C6B8732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCombineW] [6C6B6533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\crypt32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\ws2_32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\SAMLIB.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\IPHLPAPI.DLL [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[3608] @ C:\Windows\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CopyFileW] [6C6AE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!MoveFileW] [6C6B0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [6C6AA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6C6B1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [6C6B2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [6C6AE860]

C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6C6ADC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6C6AD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6C6BFBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegEnumValueW] [6C6C051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegOpenKeyExW] [6C6BEB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryValueExW] [6C6BF817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegDeleteKeyW] [6C6BEF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCreateKeyExW] [6C6BE5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCloseKey] [6C6BED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [6C6AE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileA] [6C6B2CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileA] [6C6B2926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileW] [6C6B2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesA] [6C6ABD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryA] [6C6B173F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesA] [6C6ABFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryA] [6C6B0F0F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryA] [6C6B14E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileA] [6C6AED1B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesW] [6C6ABEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryW] [6C6B1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesW] [6C6AC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryW] [6C6B103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileW] [6C6B0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryW] [6C6B1614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileA] [6C6B0921] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [6C6AA073] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [6C6AA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileA] [6C6AE717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [6C6B0C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [6C6ADC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [6C6AD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [6C6AD361] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [6C6AC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [6C6B2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [6C6ABEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [6C6ABFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [6C6AE717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [6C6B2CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [6C6B2926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [6C6B23A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [6C6ABD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpW] [6C6AFAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpA] [6C6AF973] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCloseKey] [6C6BED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExA] [6C6BE43D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyA] [6C6BEDE8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyA] [6C6BF9B7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExA] [6C6BE9C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExW] [6C6BE5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExW] [6C6BEB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExW] [6C6C020D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueW] [6C6BF4DB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyW] [6C6BEF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6C6BFBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExW] [6C6BF817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueW] [6C6C051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyW] [6C6BFF19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExA] [6C6C0085] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueA] [6C6C0395] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyA] [6C6BFDAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExA] [6C6BF677] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [6C6ACFA8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindNextFileW] [6C6B2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [6C6B0C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [6C6AD22A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [6C6AD9DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6C6ADC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [6C6AEB68] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6C6B1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [6C6AE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [6C6ACAA7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [6C6AA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [6C6B0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [6C6AC709] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesA] [6C6ABD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [6C6ACD20] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6C6AD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!RemoveDirectoryW] [6C6B1614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateDirectoryW] [6C6B103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetFileAttributesW] [6C6AC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesW] [6C6ABEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [6C6B09B9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameW] [6C6AC848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesExW] [6C6AC368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetLongPathNameW] [6C6AC5D8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [6C6AF0D0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [6C6AFAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [6C6AF5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [6C6B620B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [6C6B7595] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [6C6B60AE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [6C6B615B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [6C6B75E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [6C6B6533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [6C6B799A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [6C6B684F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [6C6B6E45] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [6C6B6AFB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [6C6B6B47] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [6C6B7281] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [6C6B6716] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [6C6B71ED] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [6C6B7021] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [6C6B7FBE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [6C6B7159] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [6C6B68E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsSystemFolderW] [6C6B6BE2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [6C6B6803] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [6C6B6F81] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [6C6B63A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [6C6B80BD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [6C6B8513] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [6C6B8176] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [6C6B65DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [6C6B7BA4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [6C6B8235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [6C6B697F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [6C6B6DAD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [6C6B6D15] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [6C6B731F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [6C6B6EDD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [6C6B6C7D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [6C6B6AAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [6C6B78EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [6C6B63F4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [6C6B76D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [6C6B8732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [6C6B777E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [6C6B7831] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [6C6B667B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [6C6B7636] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [6C6ABB38] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindClose] [6C6B3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindFirstFileW] [6C6B3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [6C6B007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!SearchPathW] [6C6B1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [6C6AA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!DeleteFileW] [6C6AEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetShortPathNameW] [6C6AC848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesExW] [6C6AC368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateFileW] [6C6AE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [6C6AFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesW] [6C6ABEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [6C6AFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [6C6B8235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [6C6B81D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [6C6B72CD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [6C6B75E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [6C6B76D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [6C6B65DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [6C6B788F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [6C6B86D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [6C6B78EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [6C6B8732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCombineW] [6C6B6533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\crypt32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\ws2_32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\SAMLIB.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[5768] @ C:\Windows\system32\IPHLPAPI.DLL [KERNEL32.dll!GetProcAddress] [6C6A82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001c26dd0fdc
Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001c26dd0fdc (not active ControlSet)

---- Files - GMER 1.0.15 ----

File C:\ProgramData\Sunbelt\AntiMalware\FW History\FWNET{12CE9AE1-2C91-47C6-8898-9198A1E8C9B3}.xml 0 bytes
File C:\ProgramData\Sunbelt\AntiMalware\FW History\FWNET{27F4B57D-5E2F-45EF-8029-C13C87211D90}.xml 0 bytes
File C:\ProgramData\Sunbelt\AntiMalware\FW History\FWNET{05068526-C189-4C3B-8206-AD0C16C39E6A}.xml 0 bytes
File C:\ProgramData\Sunbelt\AntiMalware\FW History\FWPUP{A54AAE83-1A3B-477B-9FDD-2827489CF760}.xml 0 bytes
File C:\Users\Dree\AppData\Local\Temp\~DFBF35.tmp 49152 bytes
File C:\Users\Dree\AppData\Local\Temp\~DFBF3E.tmp 512 bytes
File C:\Users\Dree\AppData\Local\Temp\~DFBF50.tmp 16384 bytes
File C:\Users\Dree\AppData\Local\Temp\~DFBF5A.tmp 512 bytes
File C:\Users\Dree\AppData\Local\Temp\~DFBFAB.tmp 32768 bytes
File C:\Users\Dree\AppData\Local\Temp\~DFBFB5.tmp 512 bytes
File C:\Users\Dree\AppData\Local\Temp\~DFDAA3.tmp 0 bytes
File C:\Users\Dree\AppData\Roaming\Microsoft\Windows\Cookies\Low\TDRB7VQJ.txt 1274 bytes

---- EOF - GMER 1.0.15 ----

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:43 PM

Posted 15 May 2012 - 11:42 AM

aswmbr log is incomplete.Please re run the tool and post the new log

#7 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 15 May 2012 - 12:14 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-15 12:56:40
-----------------------------
12:56:40.048 OS Version: Windows 6.0.6002 Service Pack 2
12:56:40.048 Number of processors: 4 586 0xF0B
12:56:40.048 ComputerName: DREE-PC UserName: Dree
12:56:41.327 Initialize success
12:56:50.063 AVAST engine defs: 12051500
12:56:59.392 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
12:56:59.392 Disk 0 Vendor: ST350063 3.AD Size: 476940MB BusType: 3
12:56:59.423 Disk 0 MBR read successfully
12:56:59.423 Disk 0 MBR scan
12:56:59.423 Disk 0 Windows VISTA default MBR code
12:56:59.423 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 54 MB offset 63
12:56:59.439 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15360 MB offset 112640
12:56:59.454 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 461524 MB offset 31569920
12:56:59.470 Disk 0 scanning sectors +976771072
12:56:59.548 Disk 0 scanning C:\Windows\system32\drivers
12:57:10.296 Service scanning
12:57:30.654 Modules scanning
12:57:39.031 Disk 0 trace - called modules:
12:57:39.546 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
12:57:39.562 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86711730]
12:57:39.562 3 CLASSPNP.SYS[8afce8b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x85b04028]
12:57:41.621 AVAST engine scan C:\Windows
12:57:44.725 AVAST engine scan C:\Windows\system32
13:01:34.201 AVAST engine scan C:\Windows\system32\drivers
13:01:54.653 AVAST engine scan C:\Users\Dree
13:01:59.629 File: C:\Users\Dree\AppData\Local\Apple Computer\Adobe\hxbngcs.dll **INFECTED** Win32:Sefnit-GT [Drp]
13:02:11.017 File: C:\Users\Dree\AppData\Local\Apps\Apple\dyddza.dll **INFECTED** Win32:Sefnit-GT [Drp]
13:02:11.205 File: C:\Users\Dree\AppData\Local\Conduit\ATI\gdegpkuom.dll **INFECTED** Win32:Sefnit-GU [Drp]
13:04:39.997 Disk 0 MBR has been saved successfully to "C:\Users\Dree\Desktop\MBR.dat"
13:04:39.997 The log file has been saved successfully to "C:\Users\Dree\Desktop\aswMBR.txt"
13:06:04.516 File: C:\Users\Dree\AppData\Local\Temp\nsz29B1.tmp\gdegpkuom.dll **INFECTED** Win32:Sefnit-GU [Drp]
13:06:42.548 Disk 0 MBR has been saved successfully to "C:\Users\Dree\Desktop\MBR.dat"
13:06:42.548 The log file has been saved successfully to "C:\Users\Dree\Desktop\aswMBR.txt"
13:06:42.580 File: C:\Users\Dree\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\16c9fc5d-78d7f9e0 **INFECTED** Win32:Dropper-gen [Drp]
13:09:59.366 AVAST engine scan C:\ProgramData
13:11:24.386 File: C:\ProgramData\Microsoft\Windows\DRM\17F3.tmp **INFECTED** Win32:Alureon-ATG [Trj]
13:11:24.448 File: C:\ProgramData\Microsoft\Windows\DRM\80E3.tmp **INFECTED** Win32:Katusha-FG [Trj]
13:11:24.511 File: C:\ProgramData\Microsoft\Windows\DRM\C301.tmp **INFECTED** Win32:Alureon-ATD [Trj]
13:11:24.714 File: C:\ProgramData\Microsoft\Windows\DRM\F1DD.tmp **INFECTED** Win32:Katusha-FG [Trj]
13:11:24.776 File: C:\ProgramData\Microsoft\Windows\DRM\FB4F.tmp **INFECTED** Win32:Malware-gen
13:13:15.692 Scan finished successfully
13:13:40.449 Disk 0 MBR has been saved successfully to "C:\Users\Dree\Desktop\MBR.dat"
13:13:40.449 The log file has been saved successfully to "C:\Users\Dree\Desktop\aswMBR.txt"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:43 PM

Posted 15 May 2012 - 12:22 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

After running these scans

Re run aswmbr and post the new log

good luck

#9 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 15 May 2012 - 08:13 PM

C:\ProgramData\Microsoft\Windows\DRM\17F3.tmp a variant of Win32/Kryptik.AFLD trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\80E3.tmp a variant of Win32/Kryptik.AELW trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\C301.tmp Win32/Olmarik.AYD trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\F1DD.tmp a variant of Win32/Kryptik.AELW trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\FB4F.tmp a variant of Win32/Kryptik.AFLD trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\MTWB3SH.dll.vir a variant of Win32/BHO.OCS trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files\SGPSA\mtWB3sh.dll.vir a variant of Win32/BHO.OCS trojan cleaned by deleting - quarantined
C:\Users\Dree\AppData\Local\Creative Tech\kzwqybsp.dll a variant of Win32/Boaxxe.D trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Dree\AppData\Local\Temp\NODAFBC.tmp a variant of Win32/Boaxxe.D trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Dree\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\c9c35a3-51623a51 probably a variant of Java/TrojanDownloader.Agent.AB trojan cleaned by deleting - quarantined
C:\Users\Dree\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\58ec35a7-26e2dbc5 a variant of Java/Exploit.CVE-2010-4452.A trojan cleaned by deleting - quarantined

MiniToolBox by Farbar Version: 18-01-2012
Ran by Dree (administrator) on 15-05-2012 at 21:11:12
Microsoft® Windows Vista™ Ultimate Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82566DC-2 Gigabit Network Connection = Local Area Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64
set interface interface="Local Area Connection" forwarding=disabled advertise=disabled mtu=1500 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : DREE-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 00-1C-26-DD-0F-DC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Intel® 82566DC-2 Gigabit Network Connection
Physical Address. . . . . . . . . : 00-1D-09-13-CC-72
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9529:f309:88d1:4db1%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.67(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, May 15, 2012 3:06:09 PM
Lease Expires . . . . . . . . . . : Wednesday, May 16, 2012 3:06:08 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 251665673
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0F-DB-03-4F-00-1D-09-13-CC-72
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{1159740F-EDA0-4481-AC49-F26811E60842}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.gateway.2wire.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : isatap.gateway.2wire.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: home
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.226.192
74.125.226.193
74.125.226.194
74.125.226.195
74.125.226.196
74.125.226.197
74.125.226.198
74.125.226.199
74.125.226.200
74.125.226.201
74.125.226.206



Pinging google.com [74.125.226.228] with 32 bytes of data:

Reply from 74.125.226.228: bytes=32 time=19ms TTL=55

Reply from 74.125.226.228: bytes=32 time=18ms TTL=55



Ping statistics for 74.125.226.228:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 18ms, Maximum = 19ms, Average = 18ms

Server: home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=61ms TTL=49

Reply from 209.191.122.70: bytes=32 time=62ms TTL=49



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 61ms, Maximum = 62ms, Average = 61ms

Server: home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Reply from 127.0.0.1: bytes=32 time<1ms TTL=64



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
13 ...00 1c 26 dd 0f dc ...... Bluetooth Device (Personal Area Network)
11 ...00 1d 09 13 cc 72 ...... Intel® 82566DC-2 Gigabit Network Connection
1 ........................... Software Loopback Interface 1
14 ...00 00 00 00 00 00 00 e0 isatap.{1159740F-EDA0-4481-AC49-F26811E60842}
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
15 ...00 00 00 00 00 00 00 e0 isatap.gateway.2wire.net
36 ...00 00 00 00 00 00 00 e0 isatap.gateway.2wire.net
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.67 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.67 276
192.168.1.67 255.255.255.255 On-link 192.168.1.67 276
192.168.1.255 255.255.255.255 On-link 192.168.1.67 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.67 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.67 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 fe80::/64 On-link
11 276 fe80::9529:f309:88d1:4db1/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/15/2012 08:23:06 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x11c8, application start time 0xiexplore.exe0.

Error: (05/15/2012 08:19:37 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x15f8, application start time 0xiexplore.exe0.

Error: (05/15/2012 07:48:30 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0xdbc, application start time 0xiexplore.exe0.

Error: (05/15/2012 07:28:20 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x100c, application start time 0xiexplore.exe0.

Error: (05/15/2012 07:19:22 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x9b0, application start time 0xiexplore.exe0.

Error: (05/15/2012 07:10:17 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x1760, application start time 0xiexplore.exe0.

Error: (05/15/2012 07:00:20 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x7b8, application start time 0xiexplore.exe0.

Error: (05/15/2012 06:45:56 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x1164, application start time 0xiexplore.exe0.

Error: (05/15/2012 06:42:12 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x10a0, application start time 0xiexplore.exe0.

Error: (05/15/2012 06:38:42 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.19222, time stamp 0x4f4c8cf2, faulting module IEFRAME.dll, version 8.0.6001.19222, time stamp 0x4f4cb9ad, exception code 0xc0000005, fault offset 0x00125e18,
process id 0x1618, application start time 0xiexplore.exe0.


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (02/10/2010 10:55:42 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1220 seconds with 1020 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2Wire Wireless Client
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 2.0.3.13070)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge CS4 (Version: 3)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe CSI CS4 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Device Central CS4 (Version: 2)
Adobe Drive CS4 (Version: 1)
Adobe Elements Studio Launcher (Version: 1.00.0000)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 10 ActiveX (Version: 10.3.181.14)
Adobe Flash Player 10 Plugin (Version: 10.3.181.14)
Adobe Fonts All (Version: 2.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS4 (Version: 14.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop Elements 6.0 (Version: 6.0)
Adobe Premiere Elements 4.0 (Version: 4.0)
Adobe Premiere Elements 4.0 Templates (Version: 4.0.0)
Adobe Reader 9.5.1 (Version: 9.5.1)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Adobe Soundbooth CS3 (Version: 1)
Adobe Soundbooth CS3 Codecs (Version: 3)
Adobe Soundbooth CS3 Scores (Version: 1)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP DVA Panels CS3 (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Apple Application Support (Version: 1.5.2)
Apple Mobile Device Support (Version: 3.4.1.2)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Control Center (Version: 2.008.0221.1450)
Banctec Service Agreement (Version: 2.0.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
BlackBerry Desktop Software 4.5 (Version: 4.5.0.16)
BlackBerry Device Software Updater (Version: 4.7.0.48)
BlackBerry® Media Sync (Version: 3.0.0.39)
Bonjour (Version: 3.0.0.2)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2008.0221.1451.26442)
Catalyst Control Center Graphics Full Existing (Version: 2008.0221.1451.26442)
Catalyst Control Center Graphics Full New (Version: 2008.0221.1451.26442)
Catalyst Control Center Graphics Light (Version: 2008.0221.1451.26442)
Catalyst Control Center Graphics Previews Common (Version: 2008.0221.1451.26442)
Catalyst Control Center Graphics Previews Vista (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization French (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization German (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Hungarian (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Italian (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Japanese (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Korean (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Polish (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Portuguese (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Spanish (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Thai (Version: 2008.0221.1451.26442)
Catalyst Control Center Localization Turkish (Version: 2008.0221.1451.26442)
ccc-core-static (Version: 2008.0221.1451.26442)
ccc-utility (Version: 2008.0221.1451.26442)
CCC Help Chinese Standard (Version: 2008.0221.1450.26442)
CCC Help Chinese Traditional (Version: 2008.0221.1450.26442)
CCC Help English (Version: 2008.0221.1450.26442)
CCC Help French (Version: 2008.0221.1450.26442)
CCC Help German (Version: 2008.0221.1450.26442)
CCC Help Hungarian (Version: 2008.0221.1450.26442)
CCC Help Italian (Version: 2008.0221.1450.26442)
CCC Help Japanese (Version: 2008.0221.1450.26442)
CCC Help Korean (Version: 2008.0221.1450.26442)
CCC Help Polish (Version: 2008.0221.1450.26442)
CCC Help Portuguese (Version: 2008.0221.1450.26442)
CCC Help Spanish (Version: 2008.0221.1450.26442)
CCC Help Thai (Version: 2008.0221.1450.26442)
CCC Help Turkish (Version: 2008.0221.1450.26442)
Connect (Version: 1.0.0.1)
Creative MediaSource 5 (Version: 5.00)
Crosstrainer 6 (Version: 1.00.0000)
Dell DataSafe Online (Version: 1.0.21)
Dell Driver Download Manager (Version: 2.1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 3.0.5744.02)
DirectXInstallService (Version: 9.0.2)
EDocs
ESET Online Scanner v3
getPlus® for Adobe (Version: 1.5.2.35)
Google Desktop (Version: 5.9.1005.12335)
GoToAssist 8.0.0.514
Hauppauge MCE XP/Vista Software Encoder (2.0.25296) (Version: 2.0.25296)
Hauppauge TV Tuner Driver (Version: 2.0.25312)
Intel® Matrix Storage Manager
Intel® PRO Network Connections 12.1.12.4 (Version: )
iolo technologies' System Mechanic (Version: 10.8.5)
iTunes (Version: 10.4.1.10)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 21 (Version: 6.0.210)
Java™ 6 Update 4 (Version: 1.6.0.40)
Java™ 6 Update 5 (Version: 1.6.0.50)
Java™ 6 Update 6 (Version: 1.6.0.60)
Jetset Spanish (Version: 1.0)
kuler (Version: 2.0)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2003 (Version: 11.0.8305.0)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft UI Engine (Version: 6.3.2380.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Mouse Suite for Desktop Computers (Version: 2.50.025)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Music, Photos & Videos Launcher (Version: 1.00.0000)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PDF Settings CS4 (Version: 9.0)
Photoshop Camera Raw (Version: 5.0)
PowerDVD (Version: 7.0)
Product Documentation Launcher (Version: 1.00.0000)
QuickTime (Version: 7.70.80.34)
RealPlayer
RealUpgrade 1.0 (Version: 1.0.0)
Roxio Activation Module (Version: 1.0)
Roxio CinePlayer Decoder Pack (Version: 4.3.0)
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator Premier (Version: 10.1)
Roxio Creator Premier (Version: 3.7.0)
Roxio Creator Premier 10 (Version: 1.1.010)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler (Version: 3.2)
Roxio Update Manager (Version: 6.0.0)
SBC Yahoo! DSL Home Networking Installer
Skins (Version: 2008.0221.1451.26442)
Sound Blaster Audigy ADVANCED MB (Version: 1.0)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Suite Shared Configuration CS4 (Version: 1.0)
System Checkup 3.0 (Version: 3.0.2.49)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VIPRE Antivirus Premium (Version: 4.0.4280)
VoiceOver Kit (Version: 1.40.128.0)
WinRAR 4.00 (32-bit) (Version: 4.00.0)
XPS MiniView Gadget (Version: 1.00.0000)
Yahoo! Software Update
Yahoo! Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 55%
Total physical RAM: 3325.03 MB
Available physical RAM: 1495.97 MB
Total Pagefile: 6849.07 MB
Available Pagefile: 5045.9 MB
Total Virtual: 2047.88 MB
Available Virtual: 1950.08 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:450.71 GB) (Free:328.87 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:15 GB) (Free:4.6 GB) NTFS

========================= Users: ========================================

User accounts for \\DREE-PC

Administrator Dree Guest


**** End of log ****

#10 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 15 May 2012 - 08:39 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-15 21:15:18
-----------------------------
21:15:18.170 OS Version: Windows 6.0.6002 Service Pack 2
21:15:18.170 Number of processors: 4 586 0xF0B
21:15:18.170 ComputerName: DREE-PC UserName: Dree
21:15:20.666 Initialize success
21:15:27.296 AVAST engine defs: 12051500
21:15:31.571 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:15:31.571 Disk 0 Vendor: ST350063 3.AD Size: 476940MB BusType: 3
21:15:31.586 Disk 0 MBR read successfully
21:15:31.602 Disk 0 MBR scan
21:15:31.602 Disk 0 Windows VISTA default MBR code
21:15:31.602 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 54 MB offset 63
21:15:31.618 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15360 MB offset 112640
21:15:31.633 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 461524 MB offset 31569920
21:15:31.649 Disk 0 scanning sectors +976771072
21:15:31.774 Disk 0 scanning C:\Windows\system32\drivers
21:15:42.662 Service scanning
21:16:01.679 Modules scanning
21:16:06.406 Disk 0 trace - called modules:
21:16:06.452 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
21:16:06.452 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86a2dac8]
21:16:06.452 3 CLASSPNP.SYS[8b1c18b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x85d04028]
21:16:07.732 AVAST engine scan C:\Windows
21:16:10.352 AVAST engine scan C:\Windows\system32
21:19:45.960 AVAST engine scan C:\Windows\system32\drivers
21:20:12.932 AVAST engine scan C:\Users\Dree
21:25:38.259 AVAST engine scan C:\ProgramData
21:29:59.341 Scan finished successfully
21:37:43.207 Disk 0 MBR has been saved successfully to "C:\Users\Dree\Desktop\MBR.dat"
21:37:43.207 The log file has been saved successfully to "C:\Users\Dree\Desktop\aswMBR.txt"
21:38:48.170 Disk 0 MBR has been saved successfully to "C:\Users\Dree\Desktop\MBR.dat"
21:38:48.170 The log file has been saved successfully to "C:\Users\Dree\Desktop\aswMBR.txt"

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:43 PM

Posted 16 May 2012 - 04:44 AM

That looks good but i still need to see your malwarebytes log :thumbup2:

#12 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 16 May 2012 - 09:38 AM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.15.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19222
Dree :: DREE-PC [administrator]

5/15/2012 3:07:24 PM
mbam-log-2012-05-15 (15-07-24).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 396509
Time elapsed: 1 hour(s), 30 minute(s), 50 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#13 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 16 May 2012 - 09:39 AM

I'm also still getting errors when I first start my computer. How can I fix that?

Thanks sooo......much!!!!

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:43 PM

Posted 16 May 2012 - 09:49 AM

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

upload the log file to

www.filedropper.com

Post the link here

good luck

#15 ginger12

ginger12
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:43 PM

Posted 16 May 2012 - 10:00 AM

Why does it open my pictures? That's all the link does is allow picture gallery.

Edited by ginger12, 16 May 2012 - 10:02 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users