GMER 1.0.14.14536 - http://www.gmer.net Rootkit scan 2008-07-28 15:01:36 Windows 5.1.2600 Service Pack 3 ---- System - GMER 1.0.14 ---- SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwClose [0xA8D4C1E0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwConnectPort [0xA8D4A2F0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwCreateKey [0xA8D3D750] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwCreateProcess [0xA8D4BF10] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwCreateProcessEx [0xA8D4C080] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwCreateSection [0xA8D4CD00] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwCreateSymbolicLinkObject [0xA8D4C7B0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwCreateThread [0xA8D4D600] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwDeleteKey [0xA8D3D860] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwDeleteValueKey [0xA8D3D8E0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwDuplicateObject [0xA8D4C380] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwEnumerateKey [0xA8D3D990] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwEnumerateValueKey [0xA8D3DA40] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwFlushKey [0xA8D3DAF0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwInitializeRegistry [0xA8D3DB70] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwLoadDriver [0xA8D49E50] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwLoadKey [0xA8D3E590] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwLoadKey2 [0xA8D3DB90] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwNotifyChangeKey [0xA8D3DC70] SSDT kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) ZwOpenFile [0xBA6E7030] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwOpenKey [0xA8D3DD50] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwOpenProcess [0xA8D4BD00] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwOpenSection [0xA8D4CB20] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwQueryKey [0xA8D3DE30] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwQueryMultipleValueKey [0xA8D3DEE0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwQuerySystemInformation [0xA8D4D2B0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwQueryValueKey [0xA8D3DF90] SSDT \SystemRoot\system32\drivers\iksysflt.sys (System Filter Device Driver/PCTools Research Pty Ltd.) ZwRenameKey [0xA8F8812A] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwReplaceKey [0xA8D3E070] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwRequestWaitReplyPort [0xA8D4A900] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwRestoreKey [0xA8D3E100] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwResumeThread [0xA8D4D5B0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSaveKey [0xA8D3E300] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSetContextThread [0xA8D4D940] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSetInformationFile [0xA8D4DF60] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSetInformationKey [0xA8D3E390] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSetSecurityObject [0xA8D48A10] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSetSystemInformation [0xA8D4C9A0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSetValueKey [0xA8D3E430] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSuspendThread [0xA8D4D560] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwSystemDebugControl [0xA8D4A1B0] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwTerminateProcess [0xA8D4D150] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwUnloadKey [0xA8D3E550] SSDT \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ZwWriteVirtualMemory [0xA8D4C240] INT 0x62 ? 8A686BF8 INT 0x82 ? 8A686BF8 INT 0x83 ? 884D2BF8 INT 0x94 ? 884D2BF8 INT 0xA4 ? 884D2BF8 INT 0xB4 ? 884D2BF8 Code \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) FsRtlCheckLockForReadAccess Code \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) IoIsOperationSynchronous ---- Kernel code sections - GMER 1.0.14 ---- .text ntoskrnl.exe!_abnormal_termination + 1D0 804E282C 12 Bytes [ 50, 9E, D4, A8, 90, E5, D3, ... ] .text ntoskrnl.exe!IoIsOperationSynchronous 804E875A 5 Bytes JMP A8D4E880 \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) .text ntoskrnl.exe!FsRtlCheckLockForReadAccess 80512919 5 Bytes JMP A8D4E380 \??\C:\WINDOWS\system32\drivers\klif.sys (spuper-ptor/Kaspersky Lab) ? spzk.sys Das System kann die angegebene Datei nicht finden. ! .text USBPORT.SYS!DllUnload B95EA8AC 5 Bytes JMP 884D21D8 .text aacg69h1.SYS B93AF384 1 Byte [ 20 ] .text aacg69h1.SYS B93AF386 35 Bytes [ 00, 68, 00, 00, 00, 00, 00, ... ] .text aacg69h1.SYS B93AF3AA 24 Bytes [ 00, 00, 20, 00, 00, E0, 00, ... ] .text aacg69h1.SYS B93AF3C4 3 Bytes [ 00, 00, 00 ] .text aacg69h1.SYS B93AF3C9 1 Byte [ 00 ] .text ... ? C:\WINDOWS\system32\Drivers\mchInjDrv.sys Das System kann die angegebene Datei nicht finden. ! ---- User code sections - GMER 1.0.14 ---- .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 42, 84 ] .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 66, 84 ] ? C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 96, 84 ] ? C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Analog Devices\Core\smax4pnp.exe[376] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 45, 84 ] ? C:\Programme\Analog Devices\Core\smax4pnp.exe[376] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Analog Devices\Core\smax4pnp.exe[376] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Analog Devices\Core\smax4pnp.exe[376] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 7D, 84 ] ? C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 48, 84 ] .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Spyware Doctor\pctsTray.exe[412] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Spyware Doctor\pctsTray.exe[412] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 33, 87 ] .text C:\Programme\Spyware Doctor\pctsTray.exe[412] kernel32.dll!CreateThread + 1A 7C8106E1 4 Bytes [ C7, 9D, C3, 83 ] ? C:\Programme\Spyware Doctor\pctsTray.exe[412] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Spyware Doctor\pctsTray.exe[412] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F0A0F5A .text C:\Programme\Spyware Doctor\pctsTray.exe[412] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F040F5A ? C:\Programme\Spyware Doctor\pctsTray.exe[412] C:\WINDOWS\system32\shell32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS ? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; ? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] USER32.dll!AlignRects + FFFA5598 7E362A78 4 Bytes [ 70, 11, 3F, 00 ] ? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\hkcmd.exe[532] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\hkcmd.exe[532] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\hkcmd.exe[532] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, AD, 84 ] .text C:\WINDOWS\system32\hkcmd.exe[532] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\WINDOWS\system32\hkcmd.exe[532] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\ctfmon.exe[552] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\ctfmon.exe[552] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\ctfmon.exe[552] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 52, 84 ] .text C:\WINDOWS\system32\ctfmon.exe[552] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\WINDOWS\system32\ctfmon.exe[552] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\csrss.exe[568] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\csrss.exe[568] C:\WINDOWS\system32\KERNEL32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\csrss.exe[568] KERNEL32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, CF, 84 ] .text C:\WINDOWS\system32\csrss.exe[568] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\WINDOWS\system32\csrss.exe[568] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\winlogon.exe[592] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\winlogon.exe[592] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\winlogon.exe[592] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 90, 84 ] ? C:\WINDOWS\system32\winlogon.exe[592] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll ? C:\WINDOWS\system32\winlogon.exe[592] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\services.exe[636] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\services.exe[636] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\services.exe[636] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, C2, 84 ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\lsass.exe[648] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\lsass.exe[648] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\lsass.exe[648] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 61, 84 ] ? C:\WINDOWS\system32\lsass.exe[648] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\WINDOWS\system32\lsass.exe[648] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\WINDOWS\system32\lsass.exe[648] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\WINDOWS\system32\lsass.exe[648] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 24, 84 ] .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[844] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\svchost.exe[844] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\svchost.exe[844] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 6C, 84 ] ? C:\WINDOWS\system32\svchost.exe[844] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll ? C:\WINDOWS\system32\svchost.exe[844] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[900] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\svchost.exe[900] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\svchost.exe[900] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 80, 84 ] ? C:\WINDOWS\system32\svchost.exe[900] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll ? C:\WINDOWS\system32\svchost.exe[900] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 1E, 87 ] ? C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\svchost.exe[992] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\System32\svchost.exe[992] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\System32\svchost.exe[992] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 28, 86 ] ? C:\WINDOWS\System32\svchost.exe[992] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll ? C:\WINDOWS\System32\svchost.exe[992] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1056] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\svchost.exe[1056] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\svchost.exe[1056] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 3C, 84 ] ? C:\WINDOWS\system32\svchost.exe[1056] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll ? C:\WINDOWS\system32\svchost.exe[1056] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, E7, 83 ] .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, C1, 84 ] ? C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1204] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\svchost.exe[1204] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\svchost.exe[1204] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 1B, 84 ] ? C:\WINDOWS\system32\svchost.exe[1204] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll ? C:\WINDOWS\system32\svchost.exe[1204] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 45, 84 ] ? C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\spoolsv.exe[1408] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\spoolsv.exe[1408] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\spoolsv.exe[1408] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 5B, 84 ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 22, 84 ] .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\System32\alg.exe[1484] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\System32\alg.exe[1484] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\System32\alg.exe[1484] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 07, 84 ] .text C:\WINDOWS\System32\alg.exe[1484] kernel32.dll!FreeLibrary + 15 7C80AC83 4 Bytes [ B5, 53, EF, F4 ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, F0, 83 ] .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Spyware Doctor\pctsSvc.exe[1612] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Spyware Doctor\pctsSvc.exe[1612] kernel32.dll!CreateThread + 1A 7C8106E1 4 Bytes [ B3, A0, C3, 83 ] ? C:\Programme\Spyware Doctor\pctsSvc.exe[1612] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll ? C:\Programme\Spyware Doctor\pctsSvc.exe[1612] C:\WINDOWS\system32\shell32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 15, 84 ] .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\svchost.exe[1648] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\svchost.exe[1648] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\svchost.exe[1648] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 6E, 84 ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, BE, 83 ] .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, BB, 83 ] .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] kernel32.dll!FreeLibrary + 15 7C80AC83 4 Bytes [ B5, 53, EF, F4 ] ? C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\Explorer.EXE[1820] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\Explorer.EXE[1820] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\Explorer.EXE[1820] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, A6, 86 ] ? C:\WINDOWS\Explorer.EXE[1820] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll ? C:\WINDOWS\Explorer.EXE[1820] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!StrStrW + FFE286FC 7E675128 3 Bytes [ F0, 00, EA ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!StrStrW + FFE28708 7E675134 3 Bytes [ 60, 01, EA ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!StrStrW + FFE2A5AC 7E676FD8 3 Bytes [ 20, 0A, EA ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!StrStrW + FFE2A6A8 7E6770D4 4 Bytes [ 40, 02, F4, 02 ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!StrStrW + FFE2A6C4 7E6770F0 3 Bytes [ E0, 0B, EA ] .text ... .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!SHFree + 11E 7E69AA08 4 Bytes [ C0, 0C, C6, 01 ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!ILFindChild + 3D4 7E6A18C0 4 Bytes [ 10, 00, F4, 02 ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!ILFindChild + A51 7E6A1F3D 3 Bytes [ 05, F4, 02 ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!ILFindChild + 1320 7E6A280C 4 Bytes [ 60, 01, C6, 01 ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!DllGetClassObject + 50B 7E6A2DC4 3 Bytes [ 80, 07, EA ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!DllGetClassObject + 52B 7E6A2DE4 3 Bytes [ E0, 04, EA ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!DllGetClassObject + 563 7E6A2E1C 3 Bytes [ 70, 04, EA ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!SHMapPIDLToSystemImageListIndex + 648 7E6A6BE0 4 Bytes [ D0, 01, C6, 01 ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!SHMapPIDLToSystemImageListIndex + 6A4 7E6A6C3C 4 Bytes [ 40, 02, C6, 01 ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!DllGetVersion + 241 7E6AFC44 4 Bytes [ 50, 05, F4, 02 ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!ILLoadFromStream + BA2 7E6B74D8 3 Bytes [ 60, 0F, EA ] .text C:\WINDOWS\Explorer.EXE[1820] SHELL32.dll!ILLoadFromStream + CB2 7E6B75E8 4 Bytes [ 80, 00, C6, 01 ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 6C, 84 ] .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\agrsmsvc.exe[1932] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\agrsmsvc.exe[1932] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 0E, 84 ] .text C:\WINDOWS\system32\agrsmsvc.exe[1932] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\WINDOWS\system32\agrsmsvc.exe[1932] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 42, 84 ] .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; ? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] USER32.dll!AlignRects + FFFA5598 7E362A78 4 Bytes [ 70, 11, 77, 00 ] ? C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 11, 84 ] ? C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 79, 84 ] ? C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!StrStrW + FFE286FC 7E675128 3 Bytes [ F0, 00, EA ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!StrStrW + FFE28708 7E675134 3 Bytes [ 60, 01, EA ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!StrStrW + FFE2A5AC 7E676FD8 3 Bytes [ E0, 04, EA ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!StrStrW + FFE2A6A8 7E6770D4 4 Bytes [ 90, 03, 53, 04 ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!StrStrW + FFE2A6C4 7E6770F0 3 Bytes [ 50, 05, EA ] .text ... .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!ILFindChild + 3D4 7E6A18C0 4 Bytes [ D0, 01, 53, 04 ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!ILFindChild + 1320 7E6A280C 4 Bytes [ 00, 04, 53, 04 ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!DllGetClassObject + 50B 7E6A2DC4 3 Bytes [ 70, 04, EA ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!DllGetClassObject + 52B 7E6A2DE4 3 Bytes [ 00, 04, EA ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!DllGetClassObject + 563 7E6A2E1C 3 Bytes [ 90, 03, EA ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!SHMapPIDLToSystemImageListIndex + 648 7E6A6BE0 4 Bytes [ 70, 04, 53, 04 ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!SHMapPIDLToSystemImageListIndex + 6A4 7E6A6C3C 4 Bytes [ E0, 04, 53, 04 ] .text C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] SHELL32.dll!StrStrIW + 1F5 7E6E135C 3 Bytes [ F0, 0E, EA ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, E6, 83 ] ? C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 3A, 84 ] .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] kernel32.dll!FreeLibrary + 15 7C80AC83 4 Bytes [ B5, 53, EF, F4 ] ? C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 67, 84 ] .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] kernel32.dll!FreeLibrary + 15 7C80AC83 4 Bytes [ B5, 53, EF, F4 ] ? C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] C:\WINDOWS\system32\USER32.dll time/date stamp mismatch; unknown module: MSIMG32.dllunknown module: POWRPROF.dllunknown module: WINSTA.dll .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ? C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] C:\WINDOWS\system32\SHELL32.dll time/date stamp mismatch; unknown module: WINMM.dllunknown module: msi.dllunknown module: DEVMGR.DLLunknown module: urlmon.dllunknown module: OLEAUT32.dllunknown module: OLEACC.dllunknown module: VERSION.dllunknown module: MPR.dllunknown module: CSCDLL.dllunknown module: UxTheme.dllunknown module: credui.dllunknown module: RASAPI32.dllunknown module: MSGINA.dllunknown module: POWRPROF.dllunknown module: SHDOCVW.dllunknown module: BROWSEUI.dllunknown module: EFSADU.dllunknown module: LINKINFO.dllunknown module: MSIMG32.dllunknown module: DUSER.dllunknown module: PRINTUI.dllunknown module: CdfView.dllunknown module: SETUPAPI.dllunknown module: appHelp.dllunknown module: query.dllunknown module: gdiplus.dllunknown module: IMM32.dllunknown module: msvcrt.dllunknown module: MSWIN.EXE\Metastock 6.*",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\MSWIN.EXE\Metastock 6.*",FILEOPENBOGUSCTRLID,, HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",Version,,"6.*" HKLM,"%SHELLCOMPAT%\Applications\pwrplay.exe",FILEOPENBOGUS .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtClose 7C91CFD0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtClose + 4 7C91CFD4 2 Bytes [ 2C, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtCreateFile 7C91D090 1 Byte [ FF ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtCreateFile + 2 7C91D092 1 Byte [ 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtCreateFile + 4 7C91D094 2 Bytes [ 17, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtCreateKey 7C91D0D0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtCreateKey + 4 7C91D0D4 2 Bytes [ 05, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtCreateSection 7C91D160 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtCreateSection + 4 7C91D164 2 Bytes [ 23, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtDeleteKey 7C91D230 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtDeleteKey + 4 7C91D234 2 Bytes [ 0B, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtDeleteValueKey 7C91D250 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtDeleteValueKey + 4 7C91D254 2 Bytes [ 11, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtRenameKey 7C91DA40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtRenameKey + 4 7C91DA44 2 Bytes [ 14, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtSetInformationFile 7C91DC40 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtSetInformationFile + 4 7C91DC44 2 Bytes [ 20, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtSetValueKey 7C91DDB0 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtSetValueKey + 4 7C91DDB4 2 Bytes [ 0E, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtTerminateProcess 7C91DE50 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtTerminateProcess + 4 7C91DE54 2 Bytes [ 26, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtWriteFile 7C91DF60 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtWriteFile + 4 7C91DF64 2 Bytes [ 1A, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtWriteFileGather 7C91DF70 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtWriteFileGather + 4 7C91DF74 2 Bytes [ 1D, 5F ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtWriteVirtualMemory 7C91DF90 3 Bytes [ FF, 25, 1E ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] ntdll.dll!NtWriteVirtualMemory + 4 7C91DF94 2 Bytes [ 29, 5F ] ? C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch; .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes [ 43, E4, 17, 84 ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] kernel32.dll!FreeLibrary + 15 7C80AC83 4 Bytes [ B5, 53, EF, F4 ] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] USER32.dll!SetWindowsHookExW 7E37820F 6 Bytes JMP 5F320F5A .text C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] USER32.dll!SetWindowsHookExA 7E381211 6 Bytes JMP 5F2E0F5A ---- Kernel IAT/EAT - GMER 1.0.14 ---- IAT \WINDOWS\System32\Drivers\SCSIPORT.SYS[ntoskrnl.exe!DbgBreakPoint] 8A6882D8 IAT pci.sys[ntoskrnl.exe!IoDetachDevice] [F750A93C] spzk.sys IAT pci.sys[ntoskrnl.exe!IoAttachDeviceToDeviceStack] [F750A990] spzk.sys IAT atapi.sys[HAL.dll!READ_PORT_UCHAR] [F74DB040] spzk.sys IAT atapi.sys[HAL.dll!READ_PORT_BUFFER_USHORT] [F74DB13C] spzk.sys IAT atapi.sys[HAL.dll!READ_PORT_USHORT] [F74DB0BE] spzk.sys IAT atapi.sys[HAL.dll!WRITE_PORT_BUFFER_USHORT] [F74DB7FC] spzk.sys IAT atapi.sys[HAL.dll!WRITE_PORT_UCHAR] [F74DB6D2] spzk.sys IAT \SystemRoot\system32\DRIVERS\USBPORT.SYS[ntoskrnl.exe!DbgBreakPoint] 884D22D8 IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [F74EAD92] spzk.sys IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlInitUnicodeString] 0000004C IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!swprintf] 00000095 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeSetEvent] 0000000B IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoCreateSymbolicLink] 00000042 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoGetConfigurationInformation] 000000FA IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoDeleteSymbolicLink] 000000C3 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmFreeMappingAddress] 0000004E IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoFreeErrorLogEntry] 00000008 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoDisconnectInterrupt] 0000002E IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmUnmapIoSpace] 000000A1 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ObReferenceObjectByPointer] 00000066 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IofCompleteRequest] 00000028 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlCompareUnicodeString] 000000D9 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IofCallDriver] 00000024 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmAllocateMappingAddress] 000000B2 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoAllocateErrorLogEntry] 00000076 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoConnectInterrupt] 0000005B IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoDetachDevice] 000000A2 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeWaitForSingleObject] 00000049 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeInitializeEvent] 0000006D IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeCancelTimer] 0000008B IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlAnsiStringToUnicodeString] 000000D1 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlInitAnsiString] 00000025 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoBuildDeviceIoControlRequest] 00000072 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoQueueWorkItem] 000000F8 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmMapIoSpace] 000000F6 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoInvalidateDeviceRelations] 00000064 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoReportDetectedDevice] 00000086 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoReportResourceForDetection] 00000068 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlxAnsiStringToUnicodeSize] 00000098 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!NlsMbCodePageTag] 00000016 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!PoRequestPowerIrp] 000000D4 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeInsertByKeyDeviceQueue] 000000A4 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!PoRegisterDeviceForIdleDetection] 0000005C IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!sprintf] 000000CC IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmMapLockedPagesSpecifyCache] 0000005D IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ObfDereferenceObject] 00000065 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoGetAttachedDeviceReference] 000000B6 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoInvalidateDeviceState] 00000092 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ZwClose] 0000006C IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ObReferenceObjectByHandle] 00000070 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ZwCreateDirectoryObject] 00000048 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoBuildSynchronousFsdRequest] 00000050 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!PoStartNextPowerIrp] 000000FD IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoCreateDevice] 000000ED IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlCopyUnicodeString] 000000B9 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoAllocateDriverObjectExtension] 000000DA IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlQueryRegistryValues] 0000005E IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ZwOpenKey] 00000015 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlFreeUnicodeString] 00000046 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoStartTimer] 00000057 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeInitializeTimer] 000000A7 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoInitializeTimer] 0000008D IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeInitializeDpc] 0000009D IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeInitializeSpinLock] 00000084 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoInitializeIrp] 00000090 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ZwCreateKey] 000000D8 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlAppendUnicodeStringToString] 000000AB IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlIntegerToUnicodeString] 00000000 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ZwSetValueKey] 0000008C IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeInsertQueueDpc] 000000BC IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KefAcquireSpinLockAtDpcLevel] 000000D3 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoStartPacket] 0000000A IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KefReleaseSpinLockFromDpcLevel] 000000F7 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoBuildAsynchronousFsdRequest] 000000E4 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoFreeMdl] 00000058 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmUnlockPages] 00000005 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoWriteErrorLogEntry] 000000B8 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeRemoveByKeyDeviceQueue] 000000B3 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmMapLockedPagesWithReservedMapping] 00000045 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmUnmapReservedMapping] 00000006 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeSynchronizeExecution] 000000D0 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoStartNextPacket] 0000002C IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeBugCheckEx] 0000001E IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeRemoveDeviceQueue] 0000008F IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeSetTimer] 000000CA IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!_allmul] 0000003F IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmProbeAndLockPages] 0000000F IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!_except_handler3] 00000002 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!PoSetPowerState] 000000C1 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoOpenDeviceRegistryKey] 000000AF IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlWriteRegistryValue] 000000BD IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlDeleteRegistryValue] 00000003 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!_aulldiv] 00000001 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!strstr] 00000013 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!_strupr] 0000008A IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeQuerySystemTime] 0000006B IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoWMIRegistrationControl] 0000003A IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!KeTickCount] 00000091 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoAttachDeviceToDeviceStack] 00000011 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoDeleteDevice] 00000041 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ExAllocatePoolWithTag] 0000004F IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoAllocateWorkItem] 00000067 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoAllocateIrp] 000000DC IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoAllocateMdl] 000000EA IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmBuildMdlForNonPagedPool] 00000097 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmLockPagableDataSection] 000000F2 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoGetDriverObjectExtension] 000000CF IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmUnlockPagableImageSection] 000000CE IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!ExFreePoolWithTag] 000000F0 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoFreeIrp] 000000B4 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!IoFreeWorkItem] 000000E6 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!InitSafeBootMode] 00000073 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!RtlCompareMemory] 00000096 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!PoCallDriver] 000000AC IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!memmove] 00000074 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[ntoskrnl.exe!MmHighestUserAddress] 00000022 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!KfAcquireSpinLock] 00000034 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!READ_PORT_UCHAR] 0000008E IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!KeGetCurrentIrql] 00000043 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!KfRaiseIrql] 00000044 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!KfLowerIrql] 000000C4 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!HalGetInterruptVector] 000000DE IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!HalTranslateBusAddress] 000000E9 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!KeStallExecutionProcessor] 000000CB IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!KfReleaseSpinLock] 00000054 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!READ_PORT_BUFFER_USHORT] 0000007B IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!READ_PORT_USHORT] 00000094 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!WRITE_PORT_BUFFER_USHORT] 00000032 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[HAL.dll!WRITE_PORT_UCHAR] 000000A6 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[WMILIB.SYS!WmiSystemControl] 00000023 IAT \SystemRoot\System32\Drivers\aacg69h1.SYS[WMILIB.SYS!WmiCompleteRequest] 0000003D IAT \SystemRoot\system32\DRIVERS\tcpip.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\tcpip.sys[TDI.SYS!TdiRegisterDeviceObject] 87AE8DF0 IAT \SystemRoot\system32\DRIVERS\netbt.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\netbt.sys[TDI.SYS!TdiRegisterDeviceObject] 87AE8DF0 IAT \SystemRoot\System32\drivers\afd.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\netbios.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\rdbss.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\mrxsmb.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\ipnat.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\wanarp.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\System32\Drivers\Fips.SYS[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\usbccgp.sys[NTOSKRNL.EXE!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\STREAM.SYS[NTOSKRNL.EXE!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\HIDCLASS.SYS[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\usbprint.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\kbdhid.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\mouhid.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\System32\Drivers\Cdfs.SYS[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\drivers\wdmaud.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\drivers\sysaudio.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\mrxdav.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\DRIVERS\srv.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\System32\Drivers\HTTP.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 IAT \SystemRoot\system32\drivers\kmixer.sys[ntoskrnl.exe!IoCreateDevice] 87AE8D40 ---- User IAT/EAT - GMER 1.0.14 ---- IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hp\HP Software Update\HPWuSchd2.exe[216] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jusched.exe[348] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe[368] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Analog Devices\Core\smax4pnp.exe[376] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Synaptics\SynTP\SynTPEnh.exe[384] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE[404] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsTray.exe[412] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 00B904A8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 00B904D2 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 00B904FC IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 00B90526 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 00B90550 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B9057A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00B905A4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00B905CE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 00B905F8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90622 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 00B9064C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 00B90676 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 00B906A0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 00B906CA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B906F4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 00B9071E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 00B90748 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 00B90772 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 00B9079C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 00B907C6 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 00B907F0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 00B9081A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 00B90844 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B9086E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 00B90898 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 00B908C2 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 00B908EC IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 00B90916 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90940 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 00B9096A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 00B90994 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 00B909BE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 00B909E8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 00B90A12 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90E56 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00B90E80 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 00B90EAA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 00B90ED4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 00B90EFE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00B90F28 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 00B90F52 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 00B90F7C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 00B90FA6 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 00B90FD0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C00010 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00C0003A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00C00064 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00C0008E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00C000B8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00C000E2 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00C0010C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00C00136 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00C00160 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00C0018A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00C001B4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00C001DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00C00208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00C00232 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00C0025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00C00286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00C002B0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00C002DA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00C00304 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00C0032E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C00358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00C0086E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00C00898 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00C008C2 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00C008EC IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00C00ABA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00C00AE4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00C00B0E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00C00B38 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00C00B62 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00C00B8C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00C00BB6 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00C00BE0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00C00C0A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!SetErrorMode] 00B9032E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetModuleFileNameA] 00B90208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] 00B90304 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetModuleFileNameW] 00B90232 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] 00B902DA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] 00B9025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] 00B90286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!FreeLibrary] 00B901DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 00B9025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 00B90208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 00B90286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 00B901DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 00B901DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 00B90286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 00B90208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 00B9025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 00B90304 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 00B90286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 00B901DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 00B9025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 00B90208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] 00B901DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] 00B9025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] 00B90286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] 00B902B0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] 00B902DA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameW] 00B90232 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[452] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameA] 00B90208 IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\hkcmd.exe[532] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\ctfmon.exe[552] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\winsrv.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\winsrv.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\winsrv.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\winsrv.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\csrss.exe[568] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\KERNEL32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\winlogon.exe[592] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\services.exe [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\services.exe [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\services.exe [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\services.exe[636] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\LSASRV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\LSASRV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\LSASRV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SAMSRV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SAMSRV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SAMSRV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\lsass.exe[648] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHELL32.DLL [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHELL32.DLL [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHELL32.DLL [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHELL32.DLL [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHELL32.DLL [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Vidalia Bundle\Privoxy\privoxy.exe[796] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[844] @ C:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[900] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe[988] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ c:\windows\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ c:\windows\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\System32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\svchost.exe[992] @ C:\WINDOWS\System32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ c:\windows\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1056] @ c:\windows\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT c:\Programme\Microsoft LifeCam\MSCamS32.exe[1088] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Nero\Nero8\Nero BackItUp\NBService.exe[1156] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ c:\windows\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ c:\windows\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ c:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ c:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1204] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Raxco\PerfectDisk\PDAgent.exe[1316] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\spoolsv.exe[1408] @ C:\WINDOWS\system32\netapi32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Microsoft Private Folder 1.0\PrfldSvc.exe[1464] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\System32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\System32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\System32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\System32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\System32\alg.exe[1484] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsAuxs.exe[1520] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\shell32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\PSAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Spyware Doctor\pctsSvc.exe[1612] @ C:\WINDOWS\system32\PSAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe[1628] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\svchost.exe[1648] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe[1668] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Dokumente und Einstellungen\Günther Mitterer\Desktop\Virus Software\gmer.exe[1784] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\Explorer.EXE [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\Explorer.EXE [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\Explorer.EXE [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\Explorer.EXE [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\Explorer.EXE[1820] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe[1928] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\agrsmsvc.exe[1932] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe[1944] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 009A04A8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 009A04D2 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 009A04FC IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 009A0526 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 009A0550 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A057A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 009A05A4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 009A05CE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 009A05F8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0622 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 009A064C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 009A0676 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 009A06A0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 009A06CA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A06F4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 009A071E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 009A0748 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 009A0772 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 009A079C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 009A07C6 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 009A07F0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 009A081A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 009A0844 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A086E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 009A0898 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 009A08C2 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 009A08EC IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 009A0916 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0940 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 009A096A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 009A0994 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 009A09BE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 009A09E8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 009A0A12 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0E56 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 009A0E80 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 009A0EAA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 009A0ED4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 009A0EFE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 009A0F28 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 009A0F52 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 009A0F7C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 009A0FA6 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 009A0FD0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00A10010 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00A1003A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00A10064 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00A1008E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00A100B8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00A100E2 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00A1010C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00A10136 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00A10160 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00A1018A IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00A101B4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00A101DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00A10208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00A10232 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00A1025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00A10286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00A102B0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00A102DA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00A10304 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00A1032E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00A10358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00A10748 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00A10772 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00A1079C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00A107C6 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00A10994 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00A109BE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00A109E8 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00A10A12 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00A10A3C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00A10A66 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00A10A90 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00A10ABA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00A10AE4 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] 009A01DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] 009A025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] 009A0286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 009A025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 009A0208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 009A0286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 009A01DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 009A01DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 009A0286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 009A0208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 009A025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!SetErrorMode] 009A032E IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameA] 009A0208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryW] 009A0304 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameW] 009A0232 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryExW] 009A02DA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetProcAddress] 009A025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryA] 009A0286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!FreeLibrary] 009A01DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] 009A01DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] 009A025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] 009A0286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] 009A02B0 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] 009A02DA IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameW] 009A0232 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameA] 009A0208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 009A0304 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0358 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 009A0286 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 009A01DE IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 009A025C IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 009A0208 IAT C:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe[1960] @ C:\WINDOWS\system32\SAMLIB.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 009A0358 IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\psapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE[2040] @ C:\WINDOWS\system32\psapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe[2064] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe[2112] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Hewlett-Packard\Shared\HpqToaster.exe[2768] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ws2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\ws2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\Programme\Java\jre1.6.0_05\bin\jucheck.exe[2856] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7C884FD8] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [7C884FC4] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [7C884FB0] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [7C884FEC] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) IAT C:\WINDOWS\system32\wbem\wmiprvse.exe[3988] @ C:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [7C884F9C] C:\WINDOWS\system32\kernel32.dll (Client-DLL für Windows NT-Basis-API/Microsoft Corporation) ---- Devices - GMER 1.0.14 ---- Device \FileSystem\Ntfs \Ntfs 8A6851F8 AttachedDevice \FileSystem\Ntfs \Ntfs klif.sys (spuper-ptor/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\Ip kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) Device \Driver\NetBT \Device\NetBT_Tcpip_{A309C5AF-7F34-45C2-913B-6C45B7332F62} 87AE41F8 AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) Device \Driver\usbuhci \Device\USBPDO-0 884D1500 Device \Driver\usbehci \Device\USBPDO-1 884C41F8 Device \Driver\usbehci \Device\USBPDO-2 884C41F8 Device \Driver\usbuhci \Device\USBPDO-3 884D1500 Device \Driver\usbuhci \Device\USBPDO-4 884D1500 AttachedDevice \Driver\Tcpip \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) Device \Driver\usbuhci \Device\USBPDO-5 884D1500 Device \Driver\Ftdisk \Device\HarddiskVolume1 8A61B1F8 Device \Driver\NetBT \Device\NetBT_Tcpip_{8F129337-29D2-4E35-A8F6-F1A37A322186} 87AE41F8 Device \Driver\Cdrom \Device\CdRom0 884B7500 Device \Driver\PCI_PNP1370 \Device\00000065 spzk.sys Device \Driver\PCI_PNP1370 \Device\00000065 spzk.sys Device \Driver\Cdrom \Device\CdRom1 884B7500 Device \Driver\NetBT \Device\NetBt_Wins_Export 87AE41F8 Device \Driver\NetBT \Device\NetbiosSmb 87AE41F8 AttachedDevice \Driver\Tcpip \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\Tcpip \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) Device \Driver\usbuhci \Device\USBFDO-0 884D1500 Device \Driver\sptd \Device\190902620 spzk.sys Device \Driver\usbehci \Device\USBFDO-1 884C41F8 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 87ACA1F8 Device \Driver\usbuhci \Device\USBFDO-2 884D1500 Device \FileSystem\MRxSmb \Device\LanmanRedirector 87ACA1F8 Device \Driver\usbuhci \Device\USBFDO-3 884D1500 Device \Driver\usbuhci \Device\USBFDO-4 884D1500 Device \Driver\Ftdisk \Device\FtControl 8A61B1F8 Device \Driver\usbehci \Device\USBFDO-5 884C41F8 Device \Driver\aacg69h1 \Device\Scsi\aacg69h11Port2Path0Target0Lun0 884461F8 Device \Driver\aacg69h1 \Device\Scsi\aacg69h11 884461F8 Device \FileSystem\Cdfs \Cdfs 8825D500 ---- Threads - GMER 1.0.14 ---- Thread 4:280 87B45020 Thread 4:284 87B246F0 Thread 4:288 87B1A680 Thread 4:292 87B246F0 Thread 4:296 87AF5EB0 Thread 4:300 87AF5EB0 Thread 4:304 87AF5EB0 Thread 4:2392 87469F40 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x10 0x19 0xBA 0x21 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Programme\Alcohol Soft\Alcohol 120\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x53 0x04 0xA2 0xAF ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xE1 0xFD 0xF4 0xC7 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Programme\Alcohol Soft\Alcohol 120\ Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xBB 0x5C 0x44 0x82 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x53 0x04 0xA2 0xAF ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xC3 0xB7 0x3D 0x7C ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x10 0x19 0xBA 0x21 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Programme\Alcohol Soft\Alcohol 120\ Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x53 0x04 0xA2 0xAF ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xE1 0xFD 0xF4 0xC7 ... Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@DeviceNotSelectedTimeout 15 Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@GDIProcessHandleQuota 10000 Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@Spooler yes Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@swapdisk Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@TransmissionRetryTimeout 90 Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@USERProcessHandleQuota 10000 Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@appinit_dlls ---- Files - GMER 1.0.14 ---- File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\18YearOldGermanGirlSucksaguysmassive9inchcockandthenshegetsherassholefucked.rar 32068337 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\18YearOldGermanGirlSucksaguysmassive9inchcockandthenshegetsherassholefucked.rar.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\18YearOldGermanGirlSucksaguysmassive9inchcockandthenshegetsherassholefucked.wmv 32226178 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\18YearOldGermanGirlSucksaguysmassive9inchcockandthenshegetsherassholefucked.wmv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\prvflder.dat 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX 0 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Dringend Pissen.wmv 8310278 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\12183_Spielplatz.flv 7378980 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\12183_Spielplatz.flv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\126471_Trampoline_Fuck_Sex.flv 21292893 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\126471_Trampoline_Fuck_Sex.flv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\81496_Dildo_bike.flv 2421541 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\81496_Dildo_bike.flv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Bierbuechse.flv 13706528 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Bierbuechse.flv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Dringend Pissen.wmv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\FTBB_1.wmv 5581084 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\FTBB_1.wmv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Geiles Girl - Auf Party im Suff gefickt.wmv 16051581 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Geiles Girl - Auf Party im Suff gefickt.wmv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Party0.wmv 63724571 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Party0.wmv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Pissen vor schule.flv 3099919 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Pissen vor schule.flv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Piss_treppe.wmv 33743260 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Piss_treppe.wmv.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Thumbs.db 14848 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\Thumbs.db.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1 0 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips 0 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\3 girls pissing - WWW.EROTRIX.ORG - xxxx sexy porno erotrix erotica lesbo peefun golden showers toilet sex naked lesbians lez bisexual girlfriends.mpg 5959684 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Anna Kournikova eats out russian young blonde hottie.mpeg 3540996 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Anna Kournikova eats out russian young blonde hottie.mpeg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Asia Carrera - Mission Erotica (1).mpg 41971716 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Asia Carrera - Mission Erotica (1).mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\brutal german lolita teen rape an beach - blonde preteen.avi 3215443 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Collier sado-maso.mpg 8599270 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Collier sado-maso.mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Domina SM - Lisa Boyle dominatrix.mpeg 12646404 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Domina SM - Lisa Boyle dominatrix.mpeg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\fist fisting sex guy puts 2 hands in woman's ass while she p.mpg 2057259 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\fist fisting sex guy puts 2 hands in woman's ass while she p.mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Gang Bang Cum Shots (1) (1).mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\German Gang Bang Sex (3).mpg 2399670 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\German Gang Bang Sex (3).mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\GGG Die Tittenkönigin .avi 5195776 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\GGG Die Tittenkönigin .avi.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Granny sex older mature senior (1) (1) (1).mpg 575842 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Granny sex older mature senior (1) (1) (1).mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\high heels and nuts.mpeg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\ideepthroat - Very cool anal to oral movie very polished pr.mpeg 4661667 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\ideepthroat - Very cool anal to oral movie very polished pr.mpeg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Italian Hottie Home Naked.mpg 27038255 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Italian Hottie Home Naked.mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Janine Anal Brutal Rape.mpg 1078120 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Janine Anal Brutal Rape.mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\brutal german lolita teen rape an beach - blonde preteen.avi.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Gang Bang Cum Shots (1) (1).mpg 3013920 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\high heels and nuts.mpeg 589724 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Natursekt- Kamera In Toilette Beim Pissen.mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Sado Maso Porno.mpg.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\T-114364410-Nina + Laura beim Poppen LESBEN (Lesbensex, Lesbe, Vibrator, Lecken, Muschi, Ficken, Sex).mpg 294912 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Katie Hope Univesity of Penn Adult Movies Hot Pussy Fucking .mpg 3850240 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Katie Hope Univesity of Penn Adult Movies Hot Pussy Fucking .mpg.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\lesben sex.mov 27216122 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\lesben sex.mov.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\lesbian zwei lesben auf klo.mov 26054212 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\lesbian zwei lesben auf klo.mov.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Natursekt- Kamera In Toilette Beim Pissen.mpg 13526630 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Natursekt_und_Kaviar.mpg 6981636 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Natursekt_und_Kaviar.mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\PCM.db 196608 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\PCM.db.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Picasa.ini 54 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Picasa.ini.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\redhead 2 (1).mpg 6031240 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\redhead 2 (1).mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Sado Maso Porno.mpg 10836992 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\sado maso.avi 1277440 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\sado maso.avi.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Sado-Maso (1).mpg 1144848 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Sado-Maso (1).mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Sex+porn= Weird, Bizarre, Girl Masturbates With Suction Pump.mpg 3190784 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Sex+porn= Weird, Bizarre, Girl Masturbates With Suction Pump.mpg.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\T-114364410-Nina + Laura beim Poppen LESBEN (Lesbensex, Lesbe, Vibrator, Lecken, Muschi, Ficken, Sex).mpg.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\T-19648644-Lesben Natursekt am Strand.mpg 0 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\T-19648644-Lesben Natursekt am Strand.mpg.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\T-20948536-Natursekt -Junge Mädchen Pissen Auf Dem Bett.mpg 0 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\T-20948536-Natursekt -Junge Mädchen Pissen Auf Dem Bett.mpg.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\T-6976648-Meine Ex pisst im Wald pissen Natursekt heftiger Strahl auf die Wiese rasierte Muschi geile Sau echt rea.mpg 0 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\T-6976648-Meine Ex pisst im Wald pissen Natursekt heftiger Strahl auf die Wiese rasierte Muschi geile Sau echt rea.mpg.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Thumbs.db 116736 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\Thumbs.db.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\xxx - porno - dogs fuck F (1).mpeg 8614900 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\xxx - porno - dogs fuck F (1).mpeg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\zwei lesben lecken rum sex xxx.mov 1074934 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\erotik clips\zwei lesben lecken rum sex xxx.mov.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point 0 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Katzenschlecker.mpg 1972298 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Best 1163776 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Best.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Best.pps 1244672 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Best.pps.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Carmen ganz allein.pps 1549312 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Carmen ganz allein.pps.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\chrissy +.pps 2626560 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\chrissy +.pps.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\drei(3)er.pps 1700352 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\drei(3)er.pps.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Katzenschlecker.mpg.$e_ 1024 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\nice.pps 1424896 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\nice.pps.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\PerTutti.pps 1203712 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\PerTutti.pps.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Sk Sturm.pps 1410048 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Sk Sturm.pps.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Thumbs.db 14848 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\Thumbs.db.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\xLa_Magnifica_as.pps 999936 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\xLa_Magnifica_as.pps.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\zu_viel_geredet-8.mpeg 2170880 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1\XXX Power Point\zu_viel_geredet-8.mpeg.$e_ 512 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1.rar 214776871 bytes File C:\Dokumente und Einstellungen\Günther Mitterer\My Private Folder\XXX\XXX1.rar.$e_ 1024 bytes ---- EOF - GMER 1.0.14 ----