Login | Live Chat & Podcast at 1:00PM Eastern on Sunday! |
 Search | |
| Thread Tools |
02-Sep-2010, 08:30 PM
#1 | ||||||
| Mozzila running real slow Hi, I'm having trouble with my computer running slow. Mozilla in particular takes minutes to open up and respond to typing. Any help is appreciated Thanks, Here are the logs: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 8:44:03 PM, on 9/1/2010 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskhost.exe C:\Windows\BCMSMMSG.exe C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\System32\rundll32.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtblfs.exe C:\Windows\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe C:\Users\Lionberger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8DP2B0CV\SysInfo[1].exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Lionberger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PCW86WZ7\HijackThis[1].exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [Adobe_ID0EYTHM] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Adobe Version Cue CS3 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe -- End of file - 6298 bytes DDS (Ver_10-03-17.01) - NTFSx86 Run by at 20:49:21.96 on Wed 09/01/2010 Internet Explorer: 8.0.7600.16385 Microsoft Windows 7 Professional 6.1.7600.0.1252.1.1033.18.3711.2711 [GMT -5:00] SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7} ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe C:\Windows\BCMSMMSG.exe C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\rundll32.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe C:\Windows\system32\WUDFHost.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtblfs.exe C:\Windows\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Users\Lionberger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8DP2B0CV\SysInfo[1].exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Lionberger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PCW86WZ7\HijackThis[1].exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe C:\Windows\system32\NOTEPAD.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\SearchProtocolHost.exe C:\Users\Lionberger\Desktop\dds.scr C:\Windows\system32\conhost.exe ============== Pseudo HJT Report =============== uStart Page = hxxp://yahoo.sbc.com/dsl BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky anti-virus 2010\ievkbd.dll BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - c:\program files\kaspersky lab\kaspersky anti-virus 2010\klwtbbho.dll TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll mRun: [BCMSMMSG] BCMSMMSG.exe mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [Acrobat Assistant 8.0] "c:\program files\adobe\acrobat 8.0\acrobat\Acrotray.exe" mRun: [<NO NAME>] mRun: [Adobe_ID0EYTHM] c:\progra~1\common~1\adobe\adobev~1\server\bin\VERSIO~2.EXE mRun: [AVP] "c:\program files\kaspersky lab\kaspersky anti-virus 2010\avp.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [NvSvc] RUNDLL32.EXE c:\windows\system32\nvsvc.dll,nvsvcStart mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Append to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000 IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - c:\program files\kaspersky lab\kaspersky anti-virus 2010\klwtbbho.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office12\REFIEBAR.DLL IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - c:\program files\kaspersky lab\kaspersky anti-virus 2010\klwtbbho.dll Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll Notify: klogon - c:\windows\system32\klogon.dll AppInit_DLLs: c:\progra~1\kasper~1\kasper~1\mzvkbd3.dll SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL ================= FIREFOX =================== FF - ProfilePath - c:\users\lionbe~1\appdata\roaming\mozilla\firefox\profiles\g8oe4myn.default \ FF - component: c:\program files\mozilla firefox\extensions\linkfilter@kaspersky.ru\components\KavLinkFilter.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll FF - plugin: c:\users\lionberger\appdata\roaming\mozilla\firefox\profiles\g8oe4myn.defau lt\extensions\{195a3098-0bd5-4e90-ae22-ba1c540afd1e}\plugins\npGarmin.dll ---- FIREFOX POLICIES ---- FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true); c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true); c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true); c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32); c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false); c:\program files\mozilla firefox\greprefs\all.js - pref("network.proxy.type", 5); c:\program files\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.count", 24); c:\program files\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096); c:\program files\mozilla firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45); c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false); c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25); c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5); c:\program files\mozilla firefox\greprefs\all.js - pref("accelerometer.enabled", true); c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_availa ble_pref", true); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", ""); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com"); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com"); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20); c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20); ============= SERVICES / DRIVERS =============== R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2009-10-14 36880] R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\drivers\klim6.sys [2009-9-14 21520] R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-1-5 9968] R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-1-5 74480] R2 AVP;Kaspersky Anti-Virus;c:\program files\kaspersky lab\kaspersky anti-virus 2010\avp.exe [2009-10-20 340520] R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2009-10-2 19472] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888] S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2010-1-5 7408] S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992] S3 UsbGps;LGE Mobile USB GPS NMEA Port;c:\windows\system32\drivers\lgusbgps.sys [2010-1-21 19840] S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2010-5-14 1343400] =============== Created Last 30 ================ 2010-09-02 01:38:51 0 d-----w- c:\program files\Trend Micro 2010-09-02 00:39:58 3352 ------w- C:\bootsqm.dat 2010-09-01 02:14:14 0 d-----w- c:\users\lionbe~1\appdata\roaming\Registry Mechanic 2010-09-01 01:59:48 0 d-----w- c:\program files\common files\PC Tools 2010-09-01 01:59:46 0 d---a-w- c:\programdata\TEMP 2010-08-28 20:13:00 0 d-sh--w- C:\found.000 2010-08-27 01:47:51 0 d-----w- c:\windows\pss 2010-08-27 01:33:05 0 d-----w- c:\program files\CCleaner 2010-08-25 16:24:05 571904 ----a-w- c:\windows\system32\oleaut32.dll 2010-08-13 01:21:05 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys 2010-08-13 01:19:28 82944 ----a-w- c:\windows\system32\iccvid.dll 2010-08-13 01:19:28 197632 ----a-w- c:\windows\system32\ir32_32.dll 2010-08-13 01:19:19 37376 ----a-w- c:\windows\system32\rtutils.dll 2010-08-13 01:19:09 1233920 ----a-w- c:\windows\system32\msxml3.dll 2010-08-13 01:17:32 224256 ----a-w- c:\windows\system32\schannel.dll 2010-08-13 01:17:30 2326016 ----a-w- c:\windows\system32\win32k.sys 2010-08-12 02:55:57 0 d-----w- c:\program files\iPod 2010-08-08 14:53:17 0 d-----w- C:\_backup-www-ion-graphics8-8-10 2010-08-04 12:08:50 65536 --sha-w- c:\users\lionberger\ntuser.dat{f378c179-9fc0-11df-8313-000cf1831db0}.TM.blf 2010-08-04 12:08:50 524288 --sha-w- c:\users\lionberger\ntuser.dat{f378c179-9fc0-11df-8313-000cf1831db0}.TMContainer00000000000000000002.regtrans-ms 2010-08-04 12:08:50 524288 --sha-w- c:\users\lionberger\ntuser.dat{f378c179-9fc0-11df-8313-000cf1831db0}.TMContainer00000000000000000001.regtrans-ms ==================== Find3M ==================== 2010-07-31 23:40:43 113933 ----a-w- c:\windows\system32\drivers\klin.dat 2010-07-31 23:40:42 97549 ----a-w- c:\windows\system32\drivers\klick.dat 2010-06-30 06:25:31 978432 ----a-w- c:\windows\system32\wininet.dll 2010-06-19 06:33:29 3955080 ----a-w- c:\windows\system32\ntkrnlpa.exe 2010-06-19 06:33:29 3899784 ----a-w- c:\windows\system32\ntoskrnl.exe 2009-07-14 04:56:42 31548 ----a-w- c:\windows\inf\perflib\0409\perfd.dat 2009-07-14 04:56:42 31548 ----a-w- c:\windows\inf\perflib\0409\perfc.dat 2009-07-14 04:56:42 291294 ----a-w- c:\windows\inf\perflib\0409\perfi.dat 2009-07-14 04:56:42 291294 ----a-w- c:\windows\inf\perflib\0409\perfh.dat 2009-07-14 04:41:57 174 --sha-w- c:\program files\desktop.ini 2009-07-14 00:34:40 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat 2009-07-14 00:34:40 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat 2009-07-14 00:34:38 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat 2009-07-14 00:34:38 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat 2009-06-10 21:26:35 9633792 --sha-r- c:\windows\fonts\StaticCache.dat 2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe ============= FINISH: 20:51:28.19 =============== GMER 1.0.15.15281 - http://www.gmer.net Rootkit scan 2010-09-01 21:38:58 Windows 6.1.7600 Running: download[1].exe; Driver: C:\Users\LIONBE~1\AppData\Local\Temp\uwtcapow.sys ---- System - GMER 1.0.15 ---- SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwAdjustPrivilegesToken [0x8D30BBD0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwAlpcConnectPort [0x8D30D52C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwAlpcCreatePort [0x8D30D782] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwAlpcSendWaitReceivePort [0x8D30D9FC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwClose [0x8D30C450] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwConnectPort [0x8D30CB32] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateEvent [0x8D30CF3C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateFile [0x8D30C5F8] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateMutant [0x8D30CE14] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateNamedPipeFile [0x8D30B7D6] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreatePort [0x8D30CCD0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateSection [0x8D30B992] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateSemaphore [0x8D30D06E] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateSymbolicLinkObject [0x8D30ECB0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateThread [0x8D30C0EE] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateThreadEx [0x8D30C1EE] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwCreateWaitablePort [0x8D30CD72] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwDebugActiveProcess [0x8D30E6A2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwDuplicateObject [0x8D30F672] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwFsControlFile [0x8D30C752] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwLoadDriver [0x8D30E734] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwMapViewOfSection [0x8D30ED64] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenEvent [0x8D30CFDE] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenFile [0x8D30C4D2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenMutant [0x8D30CEAC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenProcess [0x8D30BDD6] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenSection [0x8D30ECDA] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenSemaphore [0x8D30D110] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwOpenThread [0x8D30BCFA] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwQueryDirectoryObject [0x8D30DC3E] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwQuerySection [0x8D30F07C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwQueueApcThread [0x8D30E9CA] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwReplyPort [0x8D30D49A] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwReplyWaitReceivePort [0x8D30D360] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwRequestWaitReplyPort [0x8D30E442] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwResumeThread [0x8D30F554] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSecureConnectPort [0x8D30C86C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSetContextThread [0x8D30C30C] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSetInformationToken [0x8D30DCF2] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSetSecurityObject [0x8D30E82E] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSetSystemInformation [0x8D30F1BC] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSuspendProcess [0x8D30F2A0] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSuspendThread [0x8D30F3C8] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwSystemDebugControl [0x8D30E5CE] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwTerminateProcess [0x8D30BF4E] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwTerminateThread [0x8D30BEA4] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwUnmapViewOfSection [0x8D30EF32] SSDT \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) ZwWriteVirtualMemory [0x8D30C02E] INT 0x1F \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C2CAF8 INT 0x37 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C2C104 INT 0xC1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C2C3F4 INT 0xD1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C14FB4 INT 0xDF \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C2C1DC INT 0xE1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C2C958 INT 0xE3 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C2C6F8 INT 0xFD \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C2CF2C INT 0xFE \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 82C2D1A8 ---- Kernel code sections - GMER 1.0.15 ---- .text ntoskrnl.exe!ZwSaveKeyEx + 13B1 828478E9 1 Byte [06] .text ntoskrnl.exe!KiDispatchInterrupt + 5A2 828673D2 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3} .text ntoskrnl.exe!KeRemoveQueueEx + 1397 8286E664 4 Bytes [D0, BB, 30, 8D] .text ntoskrnl.exe!KeRemoveQueueEx + 13BF 8286E68C 8 Bytes [2C, D5, 30, 8D, 82, D7, 30, ...] {SUB AL, 0xd5; XOR [EBP-0x72cf287e], CL} .text ntoskrnl.exe!KeRemoveQueueEx + 1403 8286E6D0 4 Bytes [FC, D9, 30, 8D] .text ntoskrnl.exe!KeRemoveQueueEx + 142F 8286E6FC 4 Bytes [50, C4, 30, 8D] .text ntoskrnl.exe!KeRemoveQueueEx + 1454 8286E721 3 Bytes [CB, 30, 8D] .text ... .text C:\Windows\system32\DRIVERS\nvlddmkm.sys section is writeable [0x94C35340, 0x28CEB7, 0xE8000020] .text peauth.sys 9C552C9D 28 Bytes [84, 42, FA, FD, BA, 61, 2C, ...] .text peauth.sys 9C552CC1 28 Bytes [84, 42, FA, FD, BA, 61, 2C, ...] PAGE peauth.sys 9C558B9B 16 Bytes [49, 34, 6E, 86, F9, 31, 3A, ...] {DEC ECX; XOR AL, 0x6e; XCHG CL, BH; XOR [EDX], EDI; CMP DL, CL; JMP 0xffffffffb88d94e0; SUB DH, DH} PAGE peauth.sys 9C558BAE 53 Bytes [1F, BB, 3D, EE, 34, 0A, 2F, ...] PAGE peauth.sys 9C558BEC 111 Bytes [99, 3E, C0, 70, E1, E5, 38, ...] PAGE ... ---- User code sections - GMER 1.0.15 ---- ? C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] C:\Windows\SYSTEM32\ntdll.dll time/date stamp mismatch; ? C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] C:\Windows\system32\kernel32.dll time/date stamp mismatch; unknown module: KERNELBASE.dll .text C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] USER32.dll!NotifyWinEvent + 48B 779FF724 4 Bytes [70, 11, 33, 6D] ? C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] C:\Windows\SYSTEM32\ntdll.dll time/date stamp mismatch; ? C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] C:\Windows\system32\kernel32.dll time/date stamp mismatch; unknown module: KERNELBASE.dll .text C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] USER32.dll!NotifyWinEvent + 48B 779FF724 4 Bytes [70, 11, 33, 6D] .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!CreateDialogParamW 779E9BFF 5 Bytes JMP 6CC6C570 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!EnableWindow 779EA72E 5 Bytes JMP 6CC6C4EB C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!GetAsyncKeyState 779EC09A 5 Bytes JMP 6CC2D6E9 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!UnhookWindowsHookEx 779ECC7B 5 Bytes JMP 6CD2835E C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!CallNextHookEx 779ECC8F 5 Bytes JMP 6CD09D5C C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!CreateWindowExW 779F0E51 5 Bytes JMP 6CD18157 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!SetWindowsHookExW 779F210A 5 Bytes JMP 6CCC4633 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!GetKeyState 779F4FDA 5 Bytes JMP 6CC6D762 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!IsDialogMessageW 779F6F06 5 Bytes JMP 6CC34284 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!CreateDialogParamA 77A03E79 5 Bytes JMP 6CE40571 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!IsDialogMessage 77A0407A 5 Bytes JMP 6CE3FE12 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!CreateDialogIndirectParamA 77A09110 5 Bytes JMP 6CE405A8 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!CreateDialogIndirectParamW 77A108AD 5 Bytes JMP 6CE405DF C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxIndirectParamW 77A14AA7 5 Bytes JMP 6CE3F970 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!EndDialog 77A1555C 5 Bytes JMP 6CC35AE9 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxParamW 77A1564A 5 Bytes JMP 6CC34BA7 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!SetKeyboardState 77A16B52 5 Bytes JMP 6CE40177 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!SendInput 77A17055 5 Bytes JMP 6CE40D3C C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!SetCursorPos 77A2C1D8 5 Bytes JMP 6CE40D94 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxParamA 77A2CF6A 5 Bytes JMP 6CE3F90D C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxIndirectParamA 77A2D29C 5 Bytes JMP 6CE3F9D3 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxIndirectA 77A3E8C9 5 Bytes JMP 6CE3F8A2 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxIndirectW 77A3E9C3 5 Bytes JMP 6CE3F837 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxExA 77A3EA29 5 Bytes JMP 6CE3F7D5 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxExW 77A3EA4D 5 Bytes JMP 6CE3F773 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!keybd_event 77A3EC9B 5 Bytes JMP 6CE410C7 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] SHELL32.dll!SHChangeNotification_Lock + 45BA 7615B440 4 Bytes [11, 36, B0, 6A] {ADC [ESI], ESI; MOV AL, 0x6a} .text C:\Program Files\Internet Explorer\iexplore.exe[2096] SHELL32.dll!SHChangeNotification_Lock + 45C2 7615B448 8 Bytes [5F, 35, B0, 6A, D0, 73, AF, ...] .text C:\Program Files\Internet Explorer\iexplore.exe[2096] ole32.dll!OleLoadFromStream 777F5B88 5 Bytes JMP 6CE3FCCE C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[2096] ole32.dll!CoCreateInstance 778457FC 5 Bytes JMP 6CD18C45 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!CreateWindowExW 779F0E51 5 Bytes JMP 6CD18157 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!DialogBoxIndirectParamW 77A14AA7 5 Bytes JMP 6CE3F970 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!DialogBoxParamW 77A1564A 5 Bytes JMP 6CC34BA7 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!DialogBoxParamA 77A2CF6A 5 Bytes JMP 6CE3F90D C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!DialogBoxIndirectParamA 77A2D29C 5 Bytes JMP 6CE3F9D3 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!MessageBoxIndirectA 77A3E8C9 5 Bytes JMP 6CE3F8A2 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!MessageBoxIndirectW 77A3E9C3 5 Bytes JMP 6CE3F837 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!MessageBoxExA 77A3EA29 5 Bytes JMP 6CE3F7D5 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3128] USER32.dll!MessageBoxExW 77A3EA4D 5 Bytes JMP 6CE3F773 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!CreateDialogParamW 779E9BFF 5 Bytes JMP 6CC6C570 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!EnableWindow 779EA72E 5 Bytes JMP 6CC6C4EB C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!GetAsyncKeyState 779EC09A 5 Bytes JMP 6CC2D6E9 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!UnhookWindowsHookEx 779ECC7B 5 Bytes JMP 6CD2835E C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!CallNextHookEx 779ECC8F 5 Bytes JMP 6CD09D5C C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!CreateWindowExW 779F0E51 5 Bytes JMP 6CD18157 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!SetWindowsHookExW 779F210A 5 Bytes JMP 6CCC4633 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!GetKeyState 779F4FDA 5 Bytes JMP 6CC6D762 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!IsDialogMessageW 779F6F06 5 Bytes JMP 6CC34284 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!CreateDialogParamA 77A03E79 5 Bytes JMP 6CE40571 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!IsDialogMessage 77A0407A 5 Bytes JMP 6CE3FE12 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!CreateDialogIndirectParamA 77A09110 5 Bytes JMP 6CE405A8 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!CreateDialogIndirectParamW 77A108AD 5 Bytes JMP 6CE405DF C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!DialogBoxIndirectParamW 77A14AA7 5 Bytes JMP 6CE3F970 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!EndDialog 77A1555C 5 Bytes JMP 6CC35AE9 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!DialogBoxParamW 77A1564A 5 Bytes JMP 6CC34BA7 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!SetKeyboardState 77A16B52 5 Bytes JMP 6CE40177 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!SendInput 77A17055 5 Bytes JMP 6CE40D3C C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!SetCursorPos 77A2C1D8 5 Bytes JMP 6CE40D94 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!DialogBoxParamA 77A2CF6A 5 Bytes JMP 6CE3F90D C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!DialogBoxIndirectParamA 77A2D29C 5 Bytes JMP 6CE3F9D3 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!MessageBoxIndirectA 77A3E8C9 5 Bytes JMP 6CE3F8A2 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!MessageBoxIndirectW 77A3E9C3 5 Bytes JMP 6CE3F837 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!MessageBoxExA 77A3EA29 5 Bytes JMP 6CE3F7D5 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!MessageBoxExW 77A3EA4D 5 Bytes JMP 6CE3F773 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] USER32.dll!keybd_event 77A3EC9B 5 Bytes JMP 6CE410C7 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] SHELL32.dll!SHChangeNotification_Lock + 45BA 7615B440 4 Bytes [11, 36, B0, 6A] {ADC [ESI], ESI; MOV AL, 0x6a} .text C:\Program Files\Internet Explorer\iexplore.exe[3508] SHELL32.dll!SHChangeNotification_Lock + 45C2 7615B448 8 Bytes [5F, 35, B0, 6A, D0, 73, AF, ...] .text C:\Program Files\Internet Explorer\iexplore.exe[3508] ole32.dll!OleLoadFromStream 777F5B88 5 Bytes JMP 6CE3FCCE C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) .text C:\Program Files\Internet Explorer\iexplore.exe[3508] ole32.dll!CoCreateInstance 778457FC 5 Bytes JMP 6CD18C45 C:\Windows\system32\IEFRAME.dll (Internet Browser/Microsoft Corporation) ---- User IAT/EAT - GMER 1.0.15 ---- IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 001F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 001F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 001F0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 001F0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 001F07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 001F0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [ntdll.dll!RtlSizeHeap] 001F0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [ntdll.dll!RtlReAllocateHeap] 001F0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 001F0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 001F0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 003A0DA0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateThread] 001F0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 003A0E10 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 003A0E80 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExA] 003A0EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 003A0F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 77EC0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 77EC08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 77EC0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 77EC09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 001F0D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 001F0DA0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 77EC0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 77EC0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 77EC0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 77EC0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 77EC0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 77EC0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 77DB0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 77DB0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 77DB07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 77DB08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 003B0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 003B0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 003B04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 003B0550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 003B05C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 003B0630 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 003B06A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!HeapFree] 77DB0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExA] 003B0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 003B0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 77EA06A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 003C02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 003C0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 003C0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateThread] 77EA0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!HeapFree] 77EA07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 003C0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 003C0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 003C04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 003C0550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 003C05C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 003C0630 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 003C06A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 003C0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 003C0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 77EA0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ole32.dll [ntdll.dll!RtlAllocateHeap] 77EA08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ole32.dll [ntdll.dll!RtlReAllocateHeap] 77EA0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 003C0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 003C0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\NETAPI32.dll [ntdll.dll!RtlAllocateHeap] 77DB0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\NETAPI32.dll [ntdll.dll!RtlFreeHeap] 77DB0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\WS2_32.dll [ntdll.dll!RtlFreeHeap] 77DB0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[228] @ C:\Windows\system32\WS2_32.dll [ntdll.dll!RtlAllocateHeap] 77DB0010 IAT C:\Windows\System32\rundll32.exe[1300] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75D25E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation) IAT C:\Windows\System32\rundll32.exe[1300] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75D25E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation) IAT C:\Windows\System32\rundll32.exe[1300] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75D25E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation) IAT C:\Windows\System32\rundll32.exe[1300] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75D25E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [738A2494] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [73885624] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [738856E2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [738A250F] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [73898573] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [73894D27] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [738950CE] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [738951A3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromHBITMAP] [738966D0] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [738982CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [73898819] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [7389907A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [7389E21D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[1492] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [73894C59] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.1 6385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 001F0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 001F02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 001F0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 001F0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 001F07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 001F0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [ntdll.dll!RtlSizeHeap] 001F0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [ntdll.dll!RtlReAllocateHeap] 001F0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 001F0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 001F0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 00B30DA0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateThread] 001F0CC0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 00B30E10 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 00B30E80 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExA] 00B30EF0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B30F60 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 77EC0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 77EC08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 77EC0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 77EC09B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 001F0D30 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 001F0DA0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 77EC0A20 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 77EC0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 77EC0B00 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 77EC0B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 77EC0BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 77EC0C50 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 77DB0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 77DB0780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 77DB07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 77DB08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 00B40400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00B40470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00B404E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 00B40550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 00B405C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 00B40630 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 00B406A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!HeapFree] 77DB0A90 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExA] 00B40710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B40780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 77EA06A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00B502B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00B50320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00B50390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateThread] 77EA0710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!HeapFree] 77EA07F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00B50400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00B50470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00B504E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00B50550 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00B505C0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00B50630 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00B506A0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00B50710 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B50780 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 77EA0860 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ole32.dll [ntdll.dll!RtlAllocateHeap] 77EA08D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ole32.dll [ntdll.dll!RtlReAllocateHeap] 77EA0940 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00B50B70 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00B50BE0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\iphlpapi.dll [ntdll.dll!RtlFreeHeap] 77DB0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\iphlpapi.dll [ntdll.dll!RtlAllocateHeap] 77DB0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\WS2_32.dll [ntdll.dll!RtlFreeHeap] 77DB0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\WS2_32.dll [ntdll.dll!RtlAllocateHeap] 77DB0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [ntdll.dll!RtlFreeHeap] 77DB0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [ntdll.dll!RtlAllocateHeap] 77DB0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!HeapFree] 77EA00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!VirtualAlloc] 77EA0160 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 77EC04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] 77EC0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameW] 77EC01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] 77EC0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] 77EC02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] 77EC0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] 77EC00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\Secur32.dll [ntdll.dll!RtlAllocateHeap] 77DB0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\Secur32.dll [ntdll.dll!RtlFreeHeap] 77DB0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!LoadLibraryExA] 77EC0320 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 77EC00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 77EC0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 77EC04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\netapi32.dll [ntdll.dll!RtlAllocateHeap] 77DB0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\netapi32.dll [ntdll.dll!RtlFreeHeap] 77DB0080 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!CreateThread] 77EA0010 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!SetErrorMode] 77EC0470 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!LoadLibraryW] 77EC0400 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!HeapFree] 77EA00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 77EC04E0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!LoadLibraryExW] 77EC0390 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!GetProcAddress] 77EC0240 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!LoadLibraryA] 77EC02B0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!FreeLibrary] 77EC00F0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameW] 77EC01D0 IAT C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe[1964] @ C:\Windows\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameA] 77EC0160 IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [6AAF3932] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [6AAF1ED3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [6AAEC028] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6AAF3B9B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [6AAF595C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [6AAF47A8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [6AAF4EB8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExA] [6AAF1D43] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6AAEF312] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [6AAF06BA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6AAEFAB6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [6AAF1ED3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [6AAF1A3B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [6AAF0043] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [6AAF0CA0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [6AAF3932] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [6AAF06BA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [6AAF0CA0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [6AAF2ADB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [6AAEF1BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [6AAEF312] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [6AAEFAB6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [6AAF1A3B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [6AAF1ED3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [6AAF4EB8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [6AAF47A8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [6AAEDF55] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [6AAF06BA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [6AAF3932] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [6AAEDCFA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [6AAEDE25] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [6AAF0571] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [6AAF1D43] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [6AAEDBCF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [6AAF41F1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [6AAF595C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [6AAF4735] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [6AAF4B56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [6AAF823A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [6AAF89C0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [6AAF8584] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [6AAF7E55] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [6AAF8CD4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [6AAF90D9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [6AAF7C72] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [6AAF8D26] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [6AAF7F8E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [6AAF794A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [6AAF7D19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [6AAF8898] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [6AAF86C0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [6AAF8760] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsContentTypeW] [6AAF7EF3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegQueryUSValueW] [6AAF9B99] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegEnumUSKeyW] [6AAF958E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyA] [6AAF99D2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [6AAF8026] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [6AAF7F42] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [6AAF7AE4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [6AAF97FC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCanonicalizeW] [6AAF7BD1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [6AAF9C52] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [6AAF98B5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [6AAF77ED] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [6AAF96FD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [6AAF81EE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [6AAF80BE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [6AAF8286] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [6AAF8D75] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [6AAF7DBA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [6AAF8F70] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [6AAF892C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyW] [6AAF9A2A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [6AAF92E3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [6AAF9E71] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [6AAF8E16] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [6AAF7B33] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [6AAF9029] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [6AAF789A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [6AAF83BC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [6AAF861C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [6AAF8A5E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [6AAF8454] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [6AAF84EC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [6AAF9974] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [6AAF8EBD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [6AAED9AD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [6AAF0F2A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [6AAF1904] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [6AAF141F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [6AAF1A3B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [6AAF09C2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6AAEFAB6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [6AAEF834] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [6AAEF084] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [6AAF27FF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6AAEF312] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [6AAEEB7A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [6AAEE563] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [6AAF2ADB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [6AAF27DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [6AAEE901] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [6AAF0043] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [6AAEEE02] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [6AAF1A3B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [6AAF9974] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [6AAF9916] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [6AAF8A0C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [6AAF8D26] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [6AAF8E16] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [6AAF7D19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [6AAF8FCE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [6AAF9E16] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [6AAF9029] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [6AAF9E71] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCombineW] [6AAF7C72] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[2096] @ C:\Windows\System32\Secur32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [6AAF3932] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [6AAF1ED3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [6AAEC028] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6AAF3B9B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [6AAF595C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [6AAF47A8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [6AAF4EB8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExA] [6AAF1D43] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6AAEF312] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [6AAF06BA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6AAEFAB6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [6AAF1ED3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [6AAF1A3B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [6AAF0043] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [6AAF0CA0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [6AAF3932] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [6AAF06BA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [6AAF0CA0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [6AAF2ADB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [6AAEF1BB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [6AAEF312] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [6AAEFAB6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [6AAF1A3B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [6AAF1ED3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [6AAF4EB8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [6AAF47A8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [6AAEDF55] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [6AAF06BA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [6AAF3932] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [6AAEDCFA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [6AAEDE25] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [6AAF0571] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [6AAF1D43] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [6AAEDBCF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [6AAF41F1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [6AAF595C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [6AAF4735] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [6AAF4B56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [6AAF823A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [6AAF89C0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [6AAF8584] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [6AAF7E55] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [6AAF8CD4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [6AAF90D9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [6AAF7C72] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [6AAF8D26] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [6AAF7F8E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [6AAF794A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [6AAF7D19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [6AAF8898] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [6AAF86C0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [6AAF8760] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsContentTypeW] [6AAF7EF3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegQueryUSValueW] [6AAF9B99] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegEnumUSKeyW] [6AAF958E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyA] [6AAF99D2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [6AAF8026] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [6AAF7F42] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [6AAF7AE4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [6AAF97FC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCanonicalizeW] [6AAF7BD1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [6AAF9C52] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [6AAF98B5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [6AAF77ED] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [6AAF96FD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [6AAF81EE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [6AAF80BE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [6AAF8286] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [6AAF8D75] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [6AAF7DBA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [6AAF8F70] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [6AAF892C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegOpenUSKeyW] [6AAF9A2A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [6AAF92E3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [6AAF9E71] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [6AAF8E16] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [6AAF7B33] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [6AAF9029] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [6AAF789A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [6AAF83BC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [6AAF861C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [6AAF8A5E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [6AAF8454] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [6AAF84EC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [6AAF9974] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [6AAF8EBD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [6AAED9AD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [6AAF0F2A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [6AAF1904] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [6AAF141F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [6AAF1A3B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [6AAF09C2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6AAEFAB6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [6AAEF834] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [6AAEF084] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [6AAF27FF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6AAEF312] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [6AAEEB7A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [6AAEE563] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [6AAF2ADB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [6AAF27DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [6AAEE901] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [6AAF0043] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [6AAEEE02] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [6AAF1BBF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [6AAF1A3B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [6AAF9974] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [6AAF9916] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [6AAF8A0C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [6AAF8D26] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [6AAF8E16] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [6AAF7D19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [6AAF8FCE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [6AAF9E16] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [6AAF9029] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [6AAF9E71] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCombineW] [6AAF7C72] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[3508] @ C:\Windows\System32\Secur32.dll [KERNEL32.dll!GetProcAddress] [6AAE9F14] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation) ---- Devices - GMER 1.0.15 ---- Device \Driver\ACPI_HAL \Device\00000048 halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) AttachedDevice \Driver\tdx \Device\Tcp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation) AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation) AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation) AttachedDevice \Driver\volmgr \Device\HarddiskVolume4 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation) AttachedDevice \Driver\tdx \Device\Udp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \Driver\tdx \Device\RawIp kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) ---- EOF - GMER 1.0.15 ---- |
| |
30-Sep-2010, 04:08 PM
#2 | ||||||
| Hiya  Sorry for the lateness in a reply, but these forums are very busy  Are you still having this problem? If so, can you rescan with DDS, GMER and HijackThis, and post the fresh logs Regards eddie |
30-Sep-2010, 04:32 PM
#4 | ||||||
| Sorry to hear that, harddrive crashes are a pain, I remember mine a few years ago I'll mark this Solved, so other's don't reply to it  If the Win7 is still an issue, then the Windows 7 forum may be able to help http://forums.techguy.org/86-windows-7/ eddie
__________________ Just go with the flow, like a twig on the shoulders of a mighty stream Proud Member of ASAP, Alliance of Security Analysis Professionals |
|
| |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| |
Similar Threads | ||||
| Title | Thread Starter | Forum | Replies | Last Post |
| My XP is running real sluggishly with firewall malfunction. Help. | -Janski- | Virus & Other Malware Removal | 0 | 12-Dec-2008 07:31 PM |
| PC Running Real Slow at Times | peterm | Virus & Other Malware Removal | 0 | 10-Feb-2005 02:05 AM |
| HIJACKThis log...running real slow pls help | cardlady47 | Virus & Other Malware Removal | 2 | 25-Nov-2004 02:02 PM |
| Running real slow during games.... | ShiftyCapone | Games | 9 | 28-Feb-2004 11:22 PM |
| IE running real slow hijack this log | Anti-Intel2 | Windows XP | 5 | 12-Oct-2003 10:51 AM |
| You Are Using:  |
Advertisements do not imply our endorsement of that product or service. All times are GMT -4. The time now is 02:43 AM. Copyright © 1996 - 2011 TechGuy, Inc. All rights reserved. |  |
Facebook
Twitter
TechGuy.tv
TSG Mobile