1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Internet links being redirected, think i have some sort of spy ware or malware.

Discussion in 'Virus & Other Malware Removal' started by clayton2010, Mar 30, 2010.

Thread Status:
Not open for further replies.
Advertisement
  1. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    Hello all

    Firstly i am very new to this site but i have been reading it for a long time and your success rate is second to none.

    My problem is very similar to techdui post about goolge redircting them.

    I have the problem that my interent is redircted, Windows update is broken and will not run it comes up with a error 80072efd ??, and i cannot install spybot it says it cannot connect to servers, i have also tried to install microsoft downloads like malicious software remover and it has come up with the same that there is a server error.

    I am completely confused with it all and any help would be much appriciated.

    Ill send you a hijackthis report straight away .

    Thnaks
    Wesley Clayton
     
  2. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    Here is my Hijackthis scan First one.

    Thanks

    Logfile of Trend Micro HijackThis v2.0.0 (BETA)
    Scan saved at 23:15:10, on 30/03/2010
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    Boot mode: Normal
    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\hp\support\hpsysdrv.exe
    C:\Windows\RtHDVCpl.exe
    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
    C:\Windows\System32\hkcmd.exe
    C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Windows\ehome\ehtray.exe
    C:\Users\Wez\Program Files\DNA\btdna.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Windows\system32\schtasks.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
    C:\Windows\system32\wuauclt.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil10e.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Windows Live\Toolbar\wltuser.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
    C:\Users\Wez\Desktop\Other needed Software\HiJackThis_v2.exe
    C:\Windows\system32\msfeedssync.exe
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://uk.my.yahoo.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_GB&c=74&bd=Presario&pf=desktop
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_GB&c=74&bd=Presario&pf=desktop
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll
    O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {0859C45F-A5A0-5C71-6596-439727BFAE44} - (no file)
    O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll
    O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
    O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
    O4 - HKLM\..\Run: [SunJavaUpdateReg] "C:\Windows\system32\jureg.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
    O4 - HKLM\..\Run: [MaxBlastMonitor.exe] C:\Program Files\Maxtor\MaxBlast\MaxBlastMonitor.exe
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware (registration)] regsvr32.exe /s "C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll"
    O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    O4 - HKLM\..\RunOnce: [InnoSetupRegFile.0000000001] "C:\Windows\is-NMSH2.exe" /REG
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Wez\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro2.cce.hp.com/ChatEntry/downloads/sysinfo.cab
    O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{43289AA8-6597-4D1E-877A-5527B585AEC1}: NameServer = 93.188.164.64,93.188.166.90
    O17 - HKLM\System\CCS\Services\Tcpip\..\{F4839B3F-050E-46C9-B658-210B51E3563A}: NameServer = 93.188.164.64,93.188.166.90
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 93.188.164.64,93.188.166.90
    O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 93.188.164.64,93.188.166.90
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 93.188.164.64,93.188.166.90
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
    O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
    O23 - Service: Acronis Nonstop Backup service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
    O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
    O23 - Service: Google Update Service (gupdate1c98a212e434c70) (gupdate1c98a212e434c70) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
    O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
    O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
    O23 - Service: VRAID Log Service - Unknown owner - C:\Program Files\VIA\RAID\vialogsv.exe
    --
    End of file - 11800 bytes
     
  3. piano9playa5

    piano9playa5

    Joined:
    Jul 13, 2008
    Messages:
    132
    Hello and Welcome to TSG! Sorry about the delay.
    I'm not seeing a whole lot present in your HiJackThis log. Does RIPE or Promnet mean anything to you?
    Also, there are quite a few steps here, so take your time and ask any questions that come up. :)

    Step № One
    Please re-open HiJackThis.
    • Click Do a system scan only
    • Allow time to scan, then place a checkmark next to the following line:

      O2 - BHO: (no name) - {0859C45F-A5A0-5C71-6596-439727BFAE44} - (no file)
    • Now close all windows other than HiJackThis, and click Fix Checked.
    • Close HiJackThis.


    Step № Two
    Download OTL to your desktop.
    • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
    • Under the Custom Scans/Fixes box at the bottom, paste in the following:
      %SYSTEMROOT%\atapi.sys /s /md5
    • Then click the Quick Scan button at the top. Do not change any settings unless otherwise told to do so. The scan wont take long.
      • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
      • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them all in.


    Step № Three
    Download GMER from Here. Note the file's name and save it to your root folder, such as C:\.

    • Disconnect from the Internet and close all running programs.
    • Temporarily disable any real-time active protection so your security program drivers will not conflict with this file.
    • Click on this link to see a list of programs that should be disabled.
    • Double-click on the downloaded file to start the program. (If running Vista, right click on it and select "Run as an Administrator")
    • Allow the driver to load if asked.
    • You may be prompted to scan immediately if it detects rootkit activity.
    • If you are prompted to scan your system click "No", save the log and post back the results.
    • If not prompted, click the "Rootkit/Malware" tab.
    • On the right-side, all items to be scanned should be checked by default except for "Show All". Leave that box unchecked.
    • Select all drives that are connected to your system to be scanned.
    • Click the Scan button to begin. (Please be patient as it can take some time to complete)
    • When the scan is finished, click Save to save the scan results to your Desktop.
    • Save the file as Results.log and copy/paste the contents in your next reply.
    • Exit the program and re-enable all active protection when done.


    Logs&Info
    Remember to post back the following logs:
    1. OTL.txt
    2. Extras.txt
    3. Results.log (GMER)
     
  4. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    Ok i did my Hyjackthis thing and here are my extras and otl notepad logs.

    OTL

    OTL logfile created on: 31/03/2010 09:36:57 - Run 1
    OTL by OldTimer - Version 3.1.37.3 Folder = C:\Users\Wez\Desktop
    Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18882)
    Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

    2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 41.00% Memory free
    4.00 Gb Paging File | 3.00 Gb Available in Paging File | 64.00% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
    Drive C: | 443.36 Gb Total Space | 197.67 Gb Free Space | 44.58% Space Free | Partition Type: NTFS
    Drive D: | 7.50 Gb Total Space | 0.86 Gb Free Space | 11.44% Space Free | Partition Type: NTFS
    E: Drive not present or media not loaded
    Drive F: | 149.05 Gb Total Space | 39.97 Gb Free Space | 26.82% Space Free | Partition Type: NTFS
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded
    Drive K: | 14.90 Gb Total Space | 11.39 Gb Free Space | 76.42% Space Free | Partition Type: NTFS
    Drive W: | 111.79 Gb Total Space | 66.94 Gb Free Space | 59.88% Space Free | Partition Type: NTFS

    Computer Name: WEZ-PC
    Current User Name: Wez
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: Current user
    Company Name Whitelist: On
    Skip Microsoft Files: On
    File Age = 14 Days
    Output = Standard
    Quick Scan

    ========== Processes (SafeList) ==========

    PRC - [2010/03/31 09:36:07 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Users\Wez\Desktop\OTL.exe
    PRC - [2010/03/18 05:23:41 | 000,136,176 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.2.183.23\GoogleCrashHandler.exe
    PRC - [2010/01/31 17:37:32 | 000,298,608 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
    PRC - [2010/01/27 01:58:38 | 000,256,280 | R--- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10e.exe
    PRC - [2009/12/23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    PRC - [2009/11/13 12:31:14 | 000,092,008 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
    PRC - [2009/11/13 12:31:12 | 000,247,144 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
    PRC - [2009/10/13 17:07:00 | 002,326,920 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
    PRC - [2009/10/07 18:35:18 | 000,323,392 | ---- | M] (BitTorrent, Inc.) -- C:\Users\Wez\Program Files\DNA\btdna.exe
    PRC - [2009/09/12 16:31:30 | 000,660,520 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
    PRC - [2009/08/28 20:48:20 | 000,518,120 | ---- | M] () -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\SyncServer.exe
    PRC - [2009/08/28 20:48:08 | 000,015,376 | ---- | M] () -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
    PRC - [2009/08/17 22:54:54 | 012,957,536 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
    PRC - [2009/05/19 11:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
    PRC - [2009/02/06 18:21:00 | 000,224,632 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Toolbar\wltuser.exe
    PRC - [2008/10/17 16:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE
    PRC - [2008/09/24 16:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe
    PRC - [2008/08/10 13:34:15 | 001,245,064 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    PRC - [2008/02/21 23:02:53 | 000,238,968 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
    PRC - [2008/01/19 08:33:27 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe
    PRC - [2008/01/15 12:26:18 | 004,874,240 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
    PRC - [2007/08/22 09:21:30 | 000,055,640 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
    PRC - [2007/04/18 16:01:34 | 000,065,536 | ---- | M] (Hewlett-Packard Company) -- C:\hp\support\hpsysdrv.exe


    ========== Modules (SafeList) ==========

    MOD - [2010/03/31 09:36:07 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Users\Wez\Desktop\OTL.exe
    MOD - [2009/04/11 07:21:38 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll


    ========== Win32 Services (SafeList) ==========

    SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService)
    SRV - [2009/12/23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
    SRV - [2009/11/13 12:31:14 | 000,092,008 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
    SRV - [2009/10/13 17:07:00 | 002,326,920 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
    SRV - [2009/09/25 02:27:04 | 000,793,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
    SRV - [2009/09/12 16:31:30 | 000,660,520 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
    SRV - [2009/05/19 11:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
    SRV - [2009/02/03 14:00:30 | 000,398,848 | ---- | M] (Ares Development Group) [On_Demand | Stopped] -- C:\Program Files\Ares\chatServer.exe -- (AresChatServer)
    SRV - [2008/11/29 17:34:12 | 000,085,096 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
    SRV - [2008/10/17 16:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice)
    SRV - [2008/10/17 16:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
    SRV - [2008/10/17 16:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
    SRV - [2008/10/17 16:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
    SRV - [2008/09/24 16:50:46 | 000,052,888 | ---- | M] () [Auto | Running] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008/08/10 13:34:15 | 001,245,064 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
    SRV - [2008/08/04 11:20:16 | 003,220,856 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate)
    SRV - [2008/02/21 23:02:53 | 000,238,968 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
    SRV - [2008/01/19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
    SRV - [2007/08/22 09:21:30 | 000,055,640 | ---- | M] (Symantec Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_GB&c=74&bd=Presario&pf=desktop
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_GB&c=74&bd=Presario&pf=desktop

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://uk.my.yahoo.com/
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

    ========== FireFox ==========

    FF - prefs.js..browser.startup.homepage: "http://bt.my.yahoo.com/"
    FF - prefs.js..extensions.enabledItems: {d5bc46d8-67c7-11dc-8c1d-0097498c2b7a}:1.0.0.1
    FF - prefs.js..network.proxy.no_proxies_on: "*.local"

    FF - HKLM\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/01/24 20:18:48 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.6.2pre\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/27 00:01:15 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Mozilla Firefox 3.6.2pre\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/27 00:01:15 | 000,000,000 | ---D | M]

    [2010/02/01 23:29:16 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Mozilla\Extensions
    [2008/08/22 22:52:45 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Mozilla\Extensions\[email protected]
    [2009/01/27 23:41:39 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Mozilla\Firefox\extensions
    [2009/01/27 23:41:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Wez\AppData\Roaming\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
    [2010/03/30 23:58:29 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Mozilla\Firefox\Profiles\90fq367t.default\extensions
    [2010/02/02 16:17:34 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Wez\AppData\Roaming\Mozilla\Firefox\Profiles\90fq367t.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    [2010/02/01 23:28:33 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
    [2010/01/16 01:55:13 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
    [2010/01/16 01:55:13 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
    [2010/01/16 01:55:13 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
    [2010/01/16 01:55:13 | 000,001,135 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml

    O1 HOSTS File: ([2009/09/28 08:50:02 | 000,000,881 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: ::1 localhost
    O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
    O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
    O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
    O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
    O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll (Symantec Corporation)
    O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
    O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
    O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
    O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
    O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
    O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
    O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll (Symantec Corporation)
    O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll ()
    O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
    O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
    O3 - HKCU\..\Toolbar\WebBrowser: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll (Symantec Corporation)
    O3 - HKCU\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll ()
    O4 - HKLM..\Run: [] File not found
    O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
    O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
    O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
    O4 - HKLM..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
    O4 - HKLM..\Run: [MaxBlastMonitor.exe] C:\Program Files\Maxtor\MaxBlast\MaxBlastMonitor.exe (Maxtor)
    O4 - HKLM..\Run: [osCheck] C:\Program Files\Norton 360\osCheck.exe (Symantec Corporation)
    O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
    O4 - HKLM..\Run: [SunJavaUpdateReg] C:\Windows\System32\jureg.exe (Sun Microsystems, Inc.)
    O4 - HKCU..\Run: [BitTorrent DNA] C:\Users\Wez\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
    O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
    O4 - HKCU..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
    O4 - HKLM..\RunOnce: [InnoSetupRegFile.0000000001] C:\Windows\is-NMSH2.exe ()
    O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware (registration)] C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll (Malwarebytes Corporation)
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
    O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
    O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
    O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab (Office Genuine Advantage Validation Tool)
    O16 - DPF: {49232000-16E4-426C-A231-62846947304B} https://wimpro2.cce.hp.com/ChatEntry/downloads/sysinfo.cab (SysData Class)
    O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
    O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 93.188.164.64,93.188.166.90
    O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
    O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
    O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
    O24 - Desktop WallPaper: C:\Users\Wez\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
    O24 - Desktop BackupWallPaper: C:\Users\Wez\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2007/09/22 06:38:20 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
    O33 - MountPoints2\{4beef4e7-88a6-11dc-bdc4-806e6f6e6963}\Shell - "" = AutoRun
    O33 - MountPoints2\{4beef4e7-88a6-11dc-bdc4-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Autorun.exe -- File not found
    O33 - MountPoints2\{7690fabd-885a-11de-801a-000000000000}\Shell\AutoRun\command - "" = F:\setupSNK.exe -- File not found
    O33 - MountPoints2\{c1d583e9-87f4-11dd-8793-000000000000}\Shell - "" = AutoRun
    O33 - MountPoints2\{c1d583e9-87f4-11dd-8793-000000000000}\Shell\AutoRun\command - "" = G:\SETUP.EXE -- File not found
    O33 - MountPoints2\{c1d583e9-87f4-11dd-8793-000000000000}\Shell\configure\command - "" = G:\SETUP.EXE -- File not found
    O33 - MountPoints2\{c1d583e9-87f4-11dd-8793-000000000000}\Shell\install\command - "" = G:\SETUP.EXE -- File not found
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
    O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found

    ========== Files/Folders - Created Within 14 Days ==========

    [2010/03/31 09:35:56 | 000,555,520 | ---- | C] (OldTimer Tools) -- C:\Users\Wez\Desktop\OTL.exe
    [2010/03/30 22:30:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
    [2010/03/30 22:30:54 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
    [2010/03/30 22:30:54 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
    [2010/03/30 22:25:56 | 000,000,000 | ---D | C] -- C:\Users\Wez\Desktop\vancouver2010
    [2010/03/30 22:16:45 | 000,000,000 | ---D | C] -- C:\Users\Wez\AppData\Local\Threat Expert
    [2010/03/30 22:09:30 | 001,636,304 | ---- | C] (Threat Expert Ltd.) -- C:\Windows\PCTBDCore.dll
    [2010/03/30 22:08:40 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Doctor
    [2010/03/30 22:08:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
    [2010/03/29 16:37:28 | 000,000,000 | ---D | C] -- C:\ProgramData\SITEguard
    [2010/03/29 16:35:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\iS3
    [2010/03/29 16:35:52 | 000,000,000 | ---D | C] -- C:\ProgramData\STOPzilla!
    [2010/03/28 20:34:06 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
    [2010/03/28 20:34:04 | 000,020,824 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
    [2010/03/28 20:34:03 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
    [2010/03/18 23:39:15 | 000,000,000 | ---D | C] -- C:\Users\Wez\Desktop\Invictus.DVDSCR.xViD-xSCR
    [2010/03/18 23:35:10 | 000,000,000 | ---D | C] -- C:\Users\Wez\Desktop\Ludacris-Battle_Of_The_Sexes-2010-FTD
    [2010/03/18 23:29:16 | 000,000,000 | ---D | C] -- C:\Users\Wez\Desktop\Legion (2010) R5 DVDRip XviD-MAXSPEED
    [2010/03/18 23:29:11 | 000,000,000 | ---D | C] -- C:\Users\Wez\Desktop\District 9 (2009) DVDRip XviD-MAXSPEED
    [2010/03/06 18:16:58 | 000,384,512 | ---- | C] ( ) -- C:\Users\Wez\AppData\Roaming\7102.exe
    [2010/03/06 00:19:11 | 000,095,773 | ---- | C] (Booking System) -- C:\Users\Wez\AppData\Roaming\690.exe
    [2008/12/22 00:15:18 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Wez\AppData\Roaming\pcouffin.sys
    [2007/12/30 17:32:41 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dbghelp.dll
    [2007/12/30 17:32:41 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\Program Files\DIFxAPI.dll
    [2007/12/30 17:32:41 | 000,294,912 | ---- | C] (TODO: Gemtek) -- C:\Program Files\ISLRMV_32.exe
    [2007/12/30 17:32:41 | 000,045,056 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\Program Files\PCARmDrv.exe
    [1 C:\Users\Wez\AppData\Roaming\*.tmp files -> C:\Users\Wez\AppData\Roaming\*.tmp -> ]
     
  5. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    OTL Part 2

    ========== Files - Modified Within 14 Days ==========

    [2010/03/31 09:41:15 | 009,175,040 | ---- | M] () -- C:\Users\Wez\ntuser.dat
    [2010/03/31 09:40:15 | 000,000,388 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C50362C5-8C26-436A-8086-50DE08CB353F}.job
    [2010/03/31 09:40:15 | 000,000,388 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{648BD954-3662-407B-A2FC-98568B36751A}.job
    [2010/03/31 09:36:07 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Users\Wez\Desktop\OTL.exe
    [2010/03/31 09:32:19 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
    [2010/03/31 09:29:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    [2010/03/31 09:27:22 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    [2010/03/31 09:27:22 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    [2010/03/31 04:29:00 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    [2010/03/30 22:19:16 | 000,699,904 | ---- | M] () -- C:\Windows\is-NMSH2.exe
    [2010/03/30 22:19:16 | 000,010,498 | ---- | M] () -- C:\Windows\is-NMSH2.msg
    [2010/03/30 22:19:16 | 000,000,837 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
    [2010/03/30 22:19:16 | 000,000,384 | ---- | M] () -- C:\Windows\is-NMSH2.lst
    [2010/03/30 17:31:51 | 000,694,964 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
    [2010/03/30 17:31:51 | 000,602,846 | ---- | M] () -- C:\Windows\System32\perfh009.dat
    [2010/03/30 17:31:51 | 000,106,292 | ---- | M] () -- C:\Windows\System32\perfc009.dat
    [2010/03/30 17:26:59 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
    [2010/03/30 17:26:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2010/03/30 17:25:31 | 000,524,288 | -HS- | M] () -- C:\Users\Wez\ntuser.dat{8a719fcb-cee7-11de-b2b7-000000000000}.TMContainer00000000000000000001.regtrans-ms
    [2010/03/30 17:25:31 | 000,065,536 | -HS- | M] () -- C:\Users\Wez\ntuser.dat{8a719fcb-cee7-11de-b2b7-000000000000}.TM.blf
    [2010/03/30 17:25:25 | 002,694,696 | -H-- | M] () -- C:\Users\Wez\AppData\Local\IconCache.db
    [2010/03/29 21:56:14 | 000,000,680 | ---- | M] () -- C:\Users\Wez\AppData\Local\d3d9caps.dat
    [2010/03/29 19:57:26 | 000,113,152 | ---- | M] () -- C:\Users\Wez\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/03/29 19:42:26 | 000,000,504 | ---- | M] () -- C:\Windows\System32\drivers\kgpfr2.cfg
    [2010/03/29 19:24:31 | 000,001,904 | ---- | M] () -- C:\Windows\System32\drivers\kgpcpy.cfg
    [2010/03/29 06:23:50 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForWez.job
    [2010/03/28 02:21:00 | 000,000,454 | ---- | M] () -- C:\Windows\tasks\Driver Robot.job
    [2010/03/22 22:36:26 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
    [2010/03/22 22:36:00 | 000,020,824 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
    [2010/03/21 10:03:55 | 000,001,173 | ---- | M] () -- C:\Users\Wez\AppData\Roaming\vso_ts_preview.xml
    [2010/03/19 06:33:16 | 574,484,480 | ---- | M] () -- C:\Users\Wez\Desktop\The.Pacific.Pt.I.HDTV.XviD-SYS.avi
    [1 C:\Users\Wez\AppData\Roaming\*.tmp files -> C:\Users\Wez\AppData\Roaming\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2010/03/30 22:19:16 | 000,699,904 | ---- | C] () -- C:\Windows\is-NMSH2.exe
    [2010/03/30 22:19:16 | 000,010,498 | ---- | C] () -- C:\Windows\is-NMSH2.msg
    [2010/03/30 22:19:16 | 000,000,384 | ---- | C] () -- C:\Windows\is-NMSH2.lst
    [2010/03/29 19:41:32 | 000,000,504 | ---- | C] () -- C:\Windows\System32\drivers\kgpfr2.cfg
    [2010/03/29 18:31:45 | 000,001,904 | ---- | C] () -- C:\Windows\System32\drivers\kgpcpy.cfg
    [2010/03/28 20:34:13 | 000,000,837 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
    [2010/03/18 23:46:02 | 574,484,480 | ---- | C] () -- C:\Users\Wez\Desktop\The.Pacific.Pt.I.HDTV.XviD-SYS.avi
    [2010/03/06 00:29:38 | 000,007,793 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\1012.exe
    [2010/02/20 12:09:40 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
    [2010/01/06 15:40:33 | 000,000,033 | ---- | C] () -- C:\ProgramData\{081230F8-EA50-42A9-983C-D22ABC2EED3B}.ini
    [2009/12/28 23:46:09 | 000,000,960 | ---- | C] () -- C:\ProgramData\ss.ini
    [2009/12/28 23:41:15 | 000,110,080 | ---- | C] () -- C:\Windows\System32\advd.dll
    [2009/11/30 18:25:50 | 000,000,600 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\winscp.rnd
    [2009/10/26 22:58:49 | 000,000,110 | ---- | C] () -- C:\Windows\CMIUSETUP.INI
    [2009/10/26 22:40:20 | 000,086,016 | ---- | C] () -- C:\Windows\CMedia.dll
    [2009/10/26 22:40:17 | 000,045,056 | ---- | C] () -- C:\Windows\System32\CM102rm.dll
    [2009/10/26 22:39:34 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
    [2009/10/03 20:20:14 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
    [2009/08/17 08:12:00 | 000,000,504 | ---- | C] () -- C:\Windows\wininit.ini
    [2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.DLL
    [2009/07/19 01:20:55 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
    [2009/05/20 20:55:41 | 000,040,536 | ---- | C] () -- C:\Windows\System32\drivers\Usbkey.sys
    [2009/05/20 20:55:39 | 000,012,480 | ---- | C] () -- C:\Windows\System32\KL2N.DLL
    [2009/05/20 20:55:39 | 000,008,968 | ---- | C] () -- C:\Windows\System32\KL2DLL.DLL
    [2009/05/20 20:55:39 | 000,007,440 | ---- | C] () -- C:\Windows\System32\ppmon.dll
    [2009/05/20 15:55:29 | 000,000,050 | ---- | C] () -- C:\Windows\MegaManager.INI
    [2009/02/24 23:50:40 | 000,000,086 | ---- | C] () -- C:\Users\Wez\AppData\Local\rdvze.bat
    [2009/02/12 23:47:39 | 000,001,173 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\vso_ts_preview.xml
    [2009/02/12 23:45:27 | 000,087,608 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\inst.exe
    [2008/12/22 00:20:18 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
    [2008/12/22 00:15:58 | 000,000,014 | ---- | C] () -- C:\Windows\System32\systeminfo3.dll
    [2008/12/22 00:15:55 | 000,000,034 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\pcouffin.log
    [2008/12/22 00:15:18 | 000,081,920 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\ezpinst.exe
    [2008/12/22 00:15:18 | 000,007,887 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\pcouffin.cat
    [2008/12/22 00:15:18 | 000,001,144 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\pcouffin.inf
    [2008/11/23 14:24:32 | 003,049,984 | ---- | C] () -- C:\Windows\System32\libavcodec.dll
    [2008/11/23 14:24:32 | 000,404,480 | ---- | C] () -- C:\Windows\System32\libmplayer.dll
    [2008/11/23 14:24:32 | 000,200,704 | ---- | C] () -- C:\Windows\System32\TomsMoComp_ff.dll
    [2008/11/23 14:24:32 | 000,114,688 | ---- | C] () -- C:\Windows\System32\libmpeg2_ff.dll
    [2008/11/15 12:12:52 | 000,029,192 | ---- | C] () -- C:\Windows\System32\drivers\ndisprot.sys
    [2008/08/30 23:10:17 | 000,000,680 | ---- | C] () -- C:\Users\Wez\AppData\Local\d3d9caps.dat
    [2008/08/10 13:24:44 | 000,002,985 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
    [2008/06/18 21:51:06 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1504.dll
    [2008/05/11 00:00:38 | 000,000,000 | ---- | C] () -- C:\Windows\Irremote.ini
    [2008/04/08 23:33:05 | 000,000,127 | ---- | C] () -- C:\Windows\System32\MRT.INI
    [2008/04/01 19:26:43 | 000,000,221 | ---- | C] () -- C:\Windows\Cm102.ini.cfl
    [2008/04/01 19:26:05 | 000,065,536 | ---- | C] () -- C:\Windows\System32\CmiInstallResAll.dll
    [2008/04/01 19:26:05 | 000,002,069 | ---- | C] () -- C:\Windows\Cm102.ini.cfg
    [2008/04/01 19:26:05 | 000,000,763 | ---- | C] () -- C:\Windows\Cm102.ini.imi
    [2008/03/25 09:56:08 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1461.dll
    [2008/03/21 23:36:10 | 000,761,856 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
    [2008/03/21 23:36:09 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
    [2008/03/19 00:25:34 | 000,000,032 | ---- | C] () -- C:\ProgramData\ezsid.dat
    [2008/03/17 21:42:32 | 000,065,536 | ---- | C] () -- C:\Windows\VMix.dll
    [2008/02/11 20:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll
    [2008/01/12 19:05:11 | 000,000,542 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\wklnhst.dat
    [2008/01/04 22:00:14 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt
    [2008/01/04 21:58:30 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
    [2008/01/02 17:57:36 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
    [2007/12/30 17:32:41 | 000,200,704 | ---- | C] () -- C:\Program Files\DetectDriver.exe
    [2007/12/30 17:32:41 | 000,094,310 | ---- | C] () -- C:\Program Files\ISL.EXE
    [2007/12/30 17:32:41 | 000,040,960 | ---- | C] () -- C:\Program Files\RM_DEV_CODE.dll
    [2007/12/30 17:32:41 | 000,040,960 | ---- | C] () -- C:\Windows\System32\F5D7050.dll
    [2007/12/30 17:32:41 | 000,036,864 | ---- | C] () -- C:\Program Files\RMV.exe
    [2007/12/30 17:32:41 | 000,032,768 | ---- | C] () -- C:\Program Files\DRC.EXE
    [2007/12/30 17:32:41 | 000,028,672 | ---- | C] () -- C:\Program Files\COI.EXE
    [2007/12/30 17:32:41 | 000,024,576 | ---- | C] () -- C:\Program Files\TcpSize.exe
    [2007/12/30 17:32:41 | 000,005,230 | ---- | C] () -- C:\Windows\System32\ucuiinfo.ini
    [2007/12/30 17:32:41 | 000,001,078 | ---- | C] () -- C:\Program Files\uninstall.ico
    [2007/12/30 17:32:41 | 000,000,600 | ---- | C] () -- C:\Program Files\Wlan.ini
    [2007/12/29 17:01:24 | 000,024,064 | ---- | C] () -- C:\Users\Wez\AppData\Roaming\UserTile.png
    [2007/12/29 01:28:07 | 000,113,152 | ---- | C] () -- C:\Users\Wez\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2007/12/29 00:46:45 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
    [2007/10/31 18:54:28 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1364.dll
    [2007/09/22 06:29:03 | 000,012,428 | ---- | C] () -- C:\ProgramData\hpzinstall.log
    [2007/09/22 06:24:07 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1277.dll
    [2007/09/22 06:15:31 | 000,327,680 | ---- | C] () -- C:\Windows\System32\pythoncom25.dll
    [2007/09/22 06:15:31 | 000,102,400 | ---- | C] () -- C:\Windows\System32\pywintypes25.dll
    [2007/08/24 20:46:48 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1322.dll
    [2006/11/06 20:30:38 | 000,262,144 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
    [2006/11/02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
    [2006/11/02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
    [2006/10/27 14:52:34 | 000,000,518 | ---- | C] () -- C:\Windows\System32\SP7311.ini
    [2006/05/10 12:47:52 | 000,045,056 | ---- | C] () -- C:\Windows\System32\DMFileMan.dll
    [2005/04/08 03:16:43 | 000,009,587 | -H-- | C] () -- C:\Users\Wez\AppData\Roaming\logs.dat
    [2004/05/24 17:05:31 | 000,856,064 | ---- | C] () -- C:\Windows\System32\FreeImageX.dll

    ========== LOP Check ==========

    [2009/10/24 17:49:46 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Acronis
    [2008/11/29 13:54:09 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Atari
    [2008/12/03 00:20:42 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Autodesk
    [2010/03/30 22:25:32 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\BitTorrent
    [2008/05/08 23:37:50 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\BitZipper
    [2009/10/10 22:45:00 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Blitware
    [2009/08/28 19:40:50 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\com.adobe.ExMan
    [2007/12/29 00:56:35 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\DAEMON Tools
    [2009/03/01 23:35:49 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\DMCache
    [2010/03/31 09:38:59 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\DNA
    [2009/02/24 21:05:07 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Fast Torrent
    [2010/03/18 23:25:29 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\FrostWire
    [2008/10/03 23:28:08 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\funkitron
    [2009/10/03 19:18:52 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\GetRightToGo
    [2009/10/03 22:43:43 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\GrabPro
    [2009/12/28 23:33:33 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\HandBrake
    [2010/02/21 16:50:08 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\ImgBurn
    [2008/01/18 20:12:00 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Leadertech
    [2009/11/30 19:19:44 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Multi File Downloader
    [2010/03/25 16:59:40 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Orbit
    [2007/12/29 17:02:24 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\PeerNetworking
    [2009/12/02 00:58:55 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Pmcc
    [2009/06/05 16:53:03 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Samsung
    [2007/12/31 21:23:48 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Sports Interactive
    [2010/03/10 07:04:16 | 000,000,000 | -H-D | M] -- C:\Users\Wez\AppData\Roaming\TaskMgr
    [2008/01/12 19:05:13 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Template
    [2008/08/22 22:52:44 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\TomTom
    [2009/10/10 23:00:09 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Uniblue
    [2009/03/03 23:24:34 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\uTorrent
    [2010/03/21 10:03:56 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Vso
    [2008/01/26 19:01:04 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\WinBatch
    [2010/03/10 07:06:50 | 000,000,000 | RHSD | M] -- C:\Users\Wez\AppData\Roaming\Winbooterr
    [2010/01/06 15:35:15 | 000,000,000 | ---D | M] -- C:\Users\Wez\AppData\Roaming\Xilisoft Corporation
    [2010/03/28 02:21:00 | 000,000,454 | ---- | M] () -- C:\Windows\Tasks\Driver Robot.job
    [2010/03/30 17:25:43 | 000,032,556 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
    [2010/03/31 09:40:15 | 000,000,388 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{648BD954-3662-407B-A2FC-98568B36751A}.job
    [2010/03/31 09:40:15 | 000,000,388 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{C50362C5-8C26-436A-8086-50DE08CB353F}.job

    ========== Purity Check ==========



    ========== Custom Scans ==========


    < %SYSTEMROOT%\atapi.sys /s /md5 >
    [2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
    [2008/02/13 20:04:09 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
    [2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
    [2006/11/02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
    [2008/01/19 08:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
    [2008/02/13 20:04:09 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
    [2008/02/13 20:04:09 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys
    [2008/01/19 08:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
    [2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys

    ========== Files - Unicode (All) ==========
    [2008/06/22 11:01:16 | 000,000,000 | ---D | M](C:\Users\Wez\AppData\Roaming\???????sAppData) -- C:\Users\Wez\AppData\Roaming\&#25934;&#28530;&#17220;&#25940;&#28781;&#24940;&#25972;sAppData
    [2008/06/22 11:01:16 | 000,000,000 | ---D | M](C:\Users\Wez\AppData\Roaming\???????sAppData) -- C:\Users\Wez\AppData\Roaming\&#25934;&#28530;&#17220;&#25940;&#28781;&#24940;&#25972;sAppData
    (C:\Users\Wez\AppData\Roaming\???????sAppData) -- C:\Users\Wez\AppData\Roaming\&#25934;&#28530;&#17220;&#25940;&#28781;&#24940;&#25972;sAppData

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 24 bytes -> C:\Windows:553F4AEC237DDE34
    @Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:DFC5A2B2
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:5BB923A2
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:A8ADE5D8
    @Alternate Data Stream - 111 bytes -> C:\ProgramData\TEMP:A9662AE0
    < End of report >
     
  6. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    Extras

    OTL Extras logfile created on: 31/03/2010 09:36:57 - Run 1
    OTL by OldTimer - Version 3.1.37.3 Folder = C:\Users\Wez\Desktop
    Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18882)
    Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

    2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 41.00% Memory free
    4.00 Gb Paging File | 3.00 Gb Available in Paging File | 64.00% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
    Drive C: | 443.36 Gb Total Space | 197.67 Gb Free Space | 44.58% Space Free | Partition Type: NTFS
    Drive D: | 7.50 Gb Total Space | 0.86 Gb Free Space | 11.44% Space Free | Partition Type: NTFS
    E: Drive not present or media not loaded
    Drive F: | 149.05 Gb Total Space | 39.97 Gb Free Space | 26.82% Space Free | Partition Type: NTFS
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded
    Drive K: | 14.90 Gb Total Space | 11.39 Gb Free Space | 76.42% Space Free | Partition Type: NTFS
    Drive W: | 111.79 Gb Total Space | 66.94 Gb Free Space | 59.88% Space Free | Partition Type: NTFS

    Computer Name: WEZ-PC
    Current User Name: Wez
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: Current user
    Company Name Whitelist: On
    Skip Microsoft Files: On
    File Age = 14 Days
    Output = Standard
    Quick Scan

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
    .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

    [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
    .exe [@ = exefile] -- Reg Error: Key error. File not found

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
    htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
    htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
    inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "cval" = 1
    "AntiVirusOverride" = 0
    "FirewallOverride" = 0
    "UpdatesDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "FirewallDisableNotify" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
    "DisableMonitoring" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
    "DisableMonitoring" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "AntiVirusOverride" = 0
    "AntiSpywareOverride" = 0
    "FirewallOverride" = 0
    "VistaSp1" = Reg Error: Unknown registry data type -- File not found
    "VistaSp2" = Reg Error: Unknown registry data type -- File not found

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
    "EnableFirewall" = 1
    "DisableNotifications" = 0

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
    "C:\Program Files\Orbitdownloader\orbitdm.exe" = C:\Program Files\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
    "C:\Program Files\Orbitdownloader\orbitnet.exe" = C:\Program Files\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com)


    ========== Vista Active Open Ports Exception List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

    ========== Vista Active Application Exception List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    "{02548730-180A-487e-A726-A75CB6650AF7}" = D1400
    "{0289B35E-DC07-4c7a-9710-BBD686EA4B7D}" = Status
    "{03E66394-42F0-4745-85F7-0A2F8F35C09F}" = HP Deskjet Printer Driver Software 9.0
    "{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
    "{0A2C5854-557E-48C8-835A-3B9F074BDCAA}" = Python 2.5
    "{0A47BAFF-D4FF-4BD3-96CA-02A22EA62722}" = HP Active Support Library
    "{0BDD3FAD-61CD-4BF3-B9C4-4CEFD43F53F8}" = Norton 360 HTMLHelp
    "{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
    "{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime
    "{14592A8E-4DA6-4338-A9D5-E16449647EC3}" = Championship Manager 2010 (September Data Patch)
    "{15C70064-2463-49dd-9A88-B700F75BB428}" = dj_sf_ProductContext
    "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
    "{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
    "{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
    "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
    "{206FD69B-F9FE-4164-81BD-D52552BC9C23}" = GearDrvs
    "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
    "{21829177-4DED-4209-AD08-490B3AC9C01A}" = Norton 360
    "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
    "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
    "{24DF7221-644B-4C3A-A478-459502D40522}" = Backup
    "{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
    "{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java(TM) 6 Update 18
    "{26a8757e-6402-4e71-9275-ed6ed324a90f}" = Nero 9 Trial
    "{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
    "{2D617065-1C52-4240-B5BC-C0AE12157777}" = Norton 360
    "{2EAF7E61-068E-11DF-953C-005056806466}" = Google Earth
    "{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
    "{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Roxio Activation Module
    "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
    "{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
    "{40DA9A54-48CA-4A2C-AEAF-F67715BB046E}" = Norton 360
    "{40F7AED3-0C7D-4582-99F6-484A515C73F2}" = HP Easy Setup - Frontend
    "{4394DC3A-5DAC-4C80-A86E-FF462D0AD653}" = Windows 7 Upgrade Advisor Beta
    "{45690715-80A6-4445-B61D-ADEC5888E8CD}" = Symantec Technical Support Controls
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
    "{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
    "{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
    "{55A6283C-638A-4EE0-B491-51118554BDA2}" = Norton Confidential Core
    "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
    "{5783F2D7-6001-0409-0002-0060B0CE6BBA}" = AutoCAD 2008 - English
    "{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
    "{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype&#8482; 3.8
    "{5CA7899B-FFEC-4254-A05B-448420831F37}" = Championship Manager 2010
    "{5E06C076-E4E7-4239-A886-B3D8AC84C166}" = HP Print Diagnostic Utility
    "{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
    "{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
    "{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
    "{676B241C-AED4-400B-98FF-267773B94B11}_is1" = QuickFreedom 1.2.0
    "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
    "{6BA8A58C-BC4D-492E-967D-02FC5B3A91D3}" = SymNet
    "{6D3DB611-D5E8-4E4B-8952-0D3F549F9CC6}" = HP Active Support Library 32 bit components
    "{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
    "{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
    "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
    "{730837D4-FF5E-48DB-BA49-33E732DFF0B3}" = PanoStandAlone
    "{73A43E42-3658-4DD9-8551-FACDA3632538}" = HP Advisor
    "{75C22B40-6D12-4439-80DC-CAB3313EADA5}" = dj_sf_software_req
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
    "{77772678-817F-4401-9301-ED1D01A8DA56}" = SPBBC 32bit
    "{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
    "{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
    "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
    "{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
    "{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
    "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
    "{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
    "{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
    "{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
    "{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
    "{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
    "{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
    "{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
    "{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
    "{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
    "{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
    "{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
    "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
    "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
    "{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
    "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
    "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
    "{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
    "{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
    "{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
    "{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
    "{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
    "{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
    "{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
    "{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{902D43F4-4294-4275-B8E7-2307B833EBE0}" = Batch File Modifier
    "{93F2C2FE-5036-4DA4-83C5-3F74608C4D6C}_is1" = WinFile
    "{9422C8EA-B0C6-4197-B8FC-DC797658CA00}" = Windows Live Sign-in Assistant
    "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{95120000-0122-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
    "{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9A346205-EA92-4406-B1AB-50379DA3F057}" = Autodesk DWF Viewer 7
    "{9C2D4047-0E40-499a-AC7A-C4B9BB12FE03}" = TrayApp
    "{9DBA770F-BF73-4D39-B1DF-6035D95268FC}" = HP Customer Feedback
    "{9FA93155-472F-4778-87A8-95244FD1535D}" = OLYMPUS Master 2
    "{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}" = iTunes
    "{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
    "{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support
    "{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
    "{AB5E289E-76BF-4251-9F3F-9B763F681AE0}" = HP Customer Experience Enhancements
    "{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.7
    "{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
    "{B24E05CC-46FF-4787-BBB8-5CD516AFB118}" = ccCommon
    "{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
    "{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
    "{B639110D-747F-40DC-9682-95D94EF73790}" = dj_sf_software
    "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
    "{C2F1F96A-057E-5819-B52E-FEA1D1D2933B}" = Acronis True Image Home
    "{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}" = HP Update
    "{CB84F0F2-927B-458D-9DC5-87832E3DC653}" = GearDrvs
    "{CC8E94A2-55C7-4460-953C-2A790180578C}" = LightScribe System Software
    "{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}" = WinZip 11.1
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
    "{D6E6FA4A-5445-4850-8365-CF216C1CBB7A}" = Symantec Real Time Storage Protection Component
    "{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.9.322
    "{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
    "{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
    "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
    "{E80F62FF-5D3C-4A19-8409-9721F2928206}" = LiveUpdate (Symantec Corporation)
    "{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
    "{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
    "{EF1ADA5A-0B1A-4662-8C55-7475A61D8B65}" = DeviceDiscovery
    "{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}" = AppCore
    "{EFE673F6-688A-42ed-9C6C-9DD8CF5A9B89}" = D1400_Help
    "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
    "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
    "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
    "{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
    "{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
    "{F3759A9F-7AFA-4FB4-8DF1-53F26B979DEE}" = Belkin 54Mbps Wireless Network Adapter
    "{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
    "{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
    "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    "AC3Filter_is1" = AC3Filter 1.63b
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
    "Adobe Shockwave Player" = Adobe Shockwave Player 11
    "Ares" = Ares 2.1.1
    "Ask Toolbar_is1" = Ask Toolbar
    "AutoCAD 2008 - English" = AutoCAD 2008 - English
    "AVI to DVD Converter" = AVI to DVD Converter
    "CardRecovery" = CardRecovery
    "C-Media CM102 Like Sound Driver" = Audio Advantage Micro Driver
    "Creative VF0330" = Creative WebCam Vista Driver (1.00.03.00)
    "ENTERPRISE" = Microsoft Office Enterprise 2007
    "Free DVD Video Burner_is1" = Free DVD Video Burner version 1.1
    "Free Registry Cleaner for Vista_is1" = Free Registry Cleaner for Vista 1.0
    "Free Studio_is1" = Free Studio version 4.3
    "Free Video to DVD Converter_is1" = Free Video to DVD Converter version 1.1
    "Free Video to iPod Converter_is1" = Free Video to iPod Converter version 3.1
    "Free Video to MP3 Converter_is1" = Free Video to MP3 Converter version 3.2
    "FrostWire" = FrostWire 4.20.3
    "Google Updater" = Google Updater
    "HDMI" = Intel(R) Graphics Media Accelerator Driver
    "HijackThis" = HijackThis 2.0.0
    "HP Imaging Device Functions" = HP Imaging Device Functions 9.0
    "HP Photosmart Essential" = HP Photosmart Essential 2.01
    "HP Smart Web Printing" = HP Smart Web Printing 4.60
    "HPExtendedCapabilities" = HP Customer Participation Program 9.0
    "Img2CAD_is1" = Img2CAD 7.0
    "ImgBurn" = ImgBurn
    "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
    "LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
    "Magic ISO Maker v5.5 (build 0265)" = Magic ISO Maker v5.5 (build 0265)
    "MagicDisc 2.7.105" = MagicDisc 2.7.105
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Mozilla Firefox (3.6.2pre)" = Mozilla Firefox (3.6.2pre)
    "OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter
    "OpenAL" = OpenAL
    "Orbit_is1" = Orbit Downloader
    "OsdMaestro" = HP On-Screen Cap/Num/Scroll Lock Indicator
    "PC-Doctor 5 for Windows" = Hardware Diagnostic Tools
    "PROPLUS" = Microsoft Office Professional Plus 2007
    "PsuedoLiveUpdate" = LiveUpdate (Symantec Corporation)
    "SymSetup.{2D617065-1C52-4240-B5BC-C0AE12157777}" = Norton 360 (Symantec Corporation)
    "TomTom HOME" = TomTom HOME 2.7.3.1894
    "Uninstall_is1" = Uninstall 1.0.0.1
    "WinLiveSuite_Wave3" = Windows Live Essentials
    "WinRAR archiver" = WinRAR archiver
    "winscp3_is1" = WinSCP 4.2.4 beta
    "Xilisoft MKV Converter" = Xilisoft MKV Converter
    "Xvid_is1" = Xvid 1.1.3 final uninstall

    ========== HKEY_CURRENT_USER Uninstall List ==========

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "BitTorrent" = BitTorrent
    "BitTorrent DNA" = DNA
    "uTorrent" = ĀµTorrent

    ========== Last 10 Event Log Errors ==========

    Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

    < End of report >
     
  7. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    GMER 1.0.15.15281 - http://www.gmer.net
    Rootkit scan 2010-04-01 18:52:30
    Windows 6.0.6002 Service Pack 2
    Running: 85e5z80z.exe; Driver: C:\Users\Wez\AppData\Local\Temp\uwldqpob.sys

    ---- System - GMER 1.0.15 ----
    SSDT 86B601E0 ZwAlertResumeThread
    SSDT 86B602A0 ZwAlertThread
    SSDT 86B40940 ZwAllocateVirtualMemory
    SSDT 8678CF08 ZwAlpcConnectPort
    SSDT 86B64C10 ZwCreateMutant
    SSDT 86B40A98 ZwCreateThread
    SSDT 86B64630 ZwDebugActiveProcess
    SSDT 86B5CD00 ZwFreeVirtualMemory
    SSDT 86B64D00 ZwImpersonateAnonymousToken
    SSDT 86B64DE0 ZwImpersonateThread
    SSDT 86B5CC20 ZwMapViewOfSection
    SSDT 86B64B30 ZwOpenEvent
    SSDT 86B34D28 ZwOpenProcessToken
    SSDT 86B64970 ZwOpenSection
    SSDT 86B60610 ZwOpenThreadToken
    SSDT 868E4DF0 ZwResumeThread
    SSDT 86B349E8 ZwSetContextThread
    SSDT 86B606E0 ZwSetInformationProcess
    SSDT 86B604B8 ZwSetInformationThread
    SSDT 86B64A50 ZwSuspendProcess
    SSDT 86B40908 ZwSuspendThread
    SSDT 868D8AD8 ZwTerminateProcess
    SSDT 869F0338 ZwTerminateThread
    SSDT 869142C0 ZwUnmapViewOfSection
    SSDT 86B5CDD0 ZwWriteVirtualMemory
    INT 0x51 ? 85ED0F00
    INT 0x62 ? 85ED0F00
    INT 0x72 ? 85ED0F00
    INT 0x82 ? 84C7DBF8
    INT 0x92 ? 84C7EBF8
    INT 0xA2 ? 84C7EBF8
    INT 0xB2 ? 84C7EBF8
    INT 0xB2 ? 84C7EBF8
    INT 0xB2 ? 85ED0F00
    INT 0xB2 ? 84C7EBF8
    ---- Kernel code sections - GMER 1.0.15 ----
    .text ntkrnlpa.exe!KeSetEvent + 11D 824E8880 8 Bytes [E0, 01, B6, 86, A0, 02, B6, ...]
    .text ntkrnlpa.exe!KeSetEvent + 131 824E8894 4 Bytes [40, 09, B4, 86]
    .text ntkrnlpa.exe!KeSetEvent + 13D 824E88A0 4 Bytes [08, CF, 78, 86] {OR BH, CL; JS 0xffffffffffffff8a}
    .text ntkrnlpa.exe!KeSetEvent + 1F5 824E8958 4 Bytes [10, 4C, B6, 86] {ADC [ESI+ESI*4-0x7a], CL}
    .text ntkrnlpa.exe!KeSetEvent + 221 824E8984 4 Bytes [98, 0A, B4, 86]
    .text ...
    ? System32\Drivers\spmy.sys The system cannot find the path specified. !
    .text USBPORT.SYS!DllUnload 8E7E241B 5 Bytes JMP 85ED04E0
    .text ayojjaxo.SYS 8899D000 22 Bytes [82, 03, 41, 82, 6C, 02, 41, ...]
    .text ayojjaxo.SYS 8899D017 181 Bytes [00, 32, A7, B8, 82, 3D, A5, ...]
    .text ayojjaxo.SYS 8899D0CE 10 Bytes [00, 00, 00, 00, 00, 00, 4D, ...] {ADD [EAX], AL; ADD [EAX], AL; ADD [EAX], AL; DEC EBP; SUB AL, 0x7c; DEC EDX}
    .text ayojjaxo.SYS 8899D0DA 12 Bytes [00, 00, 02, 00, 00, 00, 26, ...]
    .text ayojjaxo.SYS 8899D0E7 714 Bytes [00, F0, 0E, 00, 00, 00, 00, ...]
    .text ...
    .text win32k.sys!EngMapFontFileFD + 87BD 98D00600 19 Bytes [83, 98, 00, 00, 00, 89, 48, ...]
    .text win32k.sys!EngMapFontFileFD + 87D1 98D00614 62 Bytes CALL 98D00660 \SystemRoot\System32\win32k.sys (Multi-User Win32 Driver/Microsoft Corporation)
    .text win32k.sys!EngMapFontFileFD + 8810 98D00653 23 Bytes [33, C0, 40, 5F, 5E, 5B, C9, ...]
    .text win32k.sys!EngMapFontFileFD + 8828 98D0066B 99 Bytes CALL 98D00A10 \SystemRoot\System32\win32k.sys (Multi-User Win32 Driver/Microsoft Corporation)
    .text win32k.sys!EngMapFontFileFD + 888C 98D006CF 12 Bytes [57, 8B, F9, 8B, CE, 8B, DA, ...] {PUSH EDI; MOV EDI, ECX; MOV ECX, ESI; MOV EBX, EDX; CALL 0xffffffffffffcadf}
    .text ...
    .text win32k.sys!EngUnlockSurface + 31 98D1DEE8 17 Bytes [5E, 5D, C2, 04, 00, 90, 90, ...] {POP ESI; POP EBP; RET 0x4; NOP ; NOP ; NOP ; NOP ; NOP ; MOV EDI, EDI; PUSH EBP; MOV EBP, ESP; MOV EAX, ECX}
    .text win32k.sys!EngUnlockSurface + 43 98D1DEFA 88 Bytes [4D, 08, 85, C9, 75, 04, 21, ...]
    .text win32k.sys!EngUnlockSurface + 9F 98D1DF56 193 Bytes [90, 8B, FF, 55, 8B, EC, 8B, ...]
    .text win32k.sys!EngUnlockSurface + 161 98D1E018 159 Bytes [4D, F0, 8B, 81, 04, 06, 00, ...]
    .text win32k.sys!EngUnlockSurface + 201 98D1E0B8 96 Bytes [0F, 85, 54, 01, 00, 00, EB, ...]
    .text ...
    .text win32k.sys!EngLockSurface + 30 98D20CA7 71 Bytes [C7, 5F, EB, 02, 33, C0, 5E, ...]
    .text win32k.sys!EngLockSurface + 78 98D20CEF 26 Bytes [5F, 68, 55, 73, 63, 63, 56, ...]
    .text win32k.sys!EngLockSurface + 93 98D20D0A 50 Bytes [00, 8D, 45, 10, 50, 6A, 00, ...]
    .text win32k.sys!EngLockSurface + C6 98D20D3D 17 Bytes [2B, 75, 0C, 89, 47, 04, 89, ...]
    .text win32k.sys!EngLockSurface + D8 98D20D4F 57 Bytes [03, C6, 3D, 00, 02, 00, 00, ...]
    .text ...
    .text win32k.sys!EngSetLastError + 7 98D27526 25 Bytes CALL 98D67A60 \SystemRoot\System32\win32k.sys (Multi-User Win32 Driver/Microsoft Corporation)
    .text win32k.sys!EngSetLastError + 21 98D27540 17 Bytes [11, 90, 90, 90, 90, 90, 33, ...]
    .text win32k.sys!EngSetLastError + 33 98D27552 7 Bytes [C7, 45, FC, FE, FF, FF, FF] {MOV DWORD [EBP-0x4], 0xfffffffe}
    .text win32k.sys!EngSetLastError + 3B 98D2755A 3 Bytes CALL 98D67AA6 \SystemRoot\System32\win32k.sys (Multi-User Win32 Driver/Microsoft Corporation)
    .text win32k.sys!EngSetLastError + 3F 98D2755E 23 Bytes [C2, 04, 00, 90, 90, 90, 90, ...]
    .text ...
    .text win32k.sys!EngGradientFill + 17 98D2CFAF 93 Bytes [D9, 8B, 53, 1C, 33, C9, 57, ...]
    .text win32k.sys!EngGradientFill + 75 98D2D00D 42 Bytes [4D, DC, 8B, 48, 10, 39, 4D, ...]
    .text win32k.sys!EngGradientFill + A0 98D2D038 240 Bytes [00, 00, 83, 7D, 2C, 00, 74, ...]
    .text win32k.sys!EngGradientFill + 191 98D2D129 94 Bytes [55, D8, 76, 0E, 8B, 45, 14, ...]
    .text win32k.sys!EngGradientFill + 1F0 98D2D188 18 Bytes [0F, 85, 26, 01, 00, 00, 3B, ...] {JNZ 0x12c; CMP EDX, [EAX+0xa2c]; JZ 0x12c}
    .text ...
    .text win32k.sys!EngAcquireSemaphore + CA 98D34042 102 Bytes [FF, 55, 8B, EC, 8B, 0D, 90, ...]
    .text win32k.sys!EngFreeMem + 2F 98D340A9 5 Bytes [45, 08, 56, 8B, F1] {INC EBP; OR [ESI-0x75], DL; INT1 }
    .text win32k.sys!EngFreeMem + 35 98D340AF 34 Bytes [08, 66, F7, 41, 20, 00, 20, ...]
    .text win32k.sys!EngFreeMem + 58 98D340D2 35 Bytes [90, 90, 90, 90, 90, 8B, FF, ...]
    .text win32k.sys!EngFreeMem + 7C 98D340F6 94 Bytes [4D, 0C, 83, F9, 08, 8B, 47, ...]
    .text win32k.sys!EngFreeMem + DC 98D34156 30 Bytes JMP 98D341E5 \SystemRoot\System32\win32k.sys (Multi-User Win32 Driver/Microsoft Corporation)
    .text ...
    .text win32k.sys!EngMulDiv + 19 98D34D08 8 Bytes [7D, 05, F7, DE, F7, 5D, 0C, ...]
    .text win32k.sys!EngMulDiv + 22 98D34D11 32 Bytes [10, 85, C9, 74, 49, 7D, 04, ...]
    .text win32k.sys!EngMulDiv + 43 98D34D32 86 Bytes [C1, 99, 52, 50, 53, 57, E8, ...]
    .text win32k.sys!EngMulDiv + 9B 98D34D8A 6 Bytes [45, F4, 33, F6, 85, C0] {INC EBP; HLT ; XOR ESI, ESI; TEST EAX, EAX}
    .text win32k.sys!EngMulDiv + A2 98D34D91 13 Bytes [34, 8B, 40, 2C, 8B, 48, 14, ...] {XOR AL, 0x8b; INC EAX; SUB AL, 0x8b; DEC EAX; ADC AL, 0x8b; PUSH EAX; SBB AL, 0x8b; JO 0x1d}
    .text ...
     
  8. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    Results log 2

    ---- User code sections - GMER 1.0.15 ----
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] ntdll.dll!RtlEncodeSystemPointer + 873 7764938B 10 Bytes JMP 049D003A
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!CreateDialogParamW 75D572A2 5 Bytes JMP 6E8FDD48 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!GetAsyncKeyState 75D5863C 5 Bytes JMP 6E8190A7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!SetWindowsHookExW 75D587AD 5 Bytes JMP 6E8F9B29 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!CallNextHookEx 75D58E3B 5 Bytes JMP 6E8ED171 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!UnhookWindowsHookEx 75D598DB 5 Bytes JMP 6E86486E C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!EnableWindow 75D5CD8B 5 Bytes JMP 6E8FDBD5 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!CreateWindowExW 75D61305 5 Bytes JMP 6E8FD9BC C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!GetKeyState 75D68CB1 5 Bytes JMP 6E8FD183 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!IsDialogMessageW 75D70745 5 Bytes JMP 6E825B9B C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!CreateDialogParamA 75D717AA 5 Bytes JMP 6E9F507C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!IsDialogMessage 75D71847 5 Bytes JMP 6E9F4918 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!CreateDialogIndirectParamA 75D726F1 5 Bytes JMP 6E9F50B3 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!CreateDialogIndirectParamW 75D79A62 5 Bytes JMP 6E9F50EA C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!SetKeyboardState 75D80987 5 Bytes JMP 6E9F4C87 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!DialogBoxParamW 75D810B0 5 Bytes JMP 6E825689 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!DialogBoxIndirectParamW 75D82EF5 5 Bytes JMP 6E9F43F7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!SendInput 75D82F75 5 Bytes JMP 6E9F5843 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!EndDialog 75D8326E 5 Bytes JMP 6E828042 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!SetCursorPos 75D96FB2 5 Bytes JMP 6E9F5897 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!DialogBoxParamA 75D98152 5 Bytes JMP 6E9F4394 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!DialogBoxIndirectParamA 75D9847D 5 Bytes JMP 6E9F445A C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!MessageBoxIndirectA 75DAD4D9 5 Bytes JMP 6E9F4329 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!MessageBoxIndirectW 75DAD5D3 5 Bytes JMP 6E9F42BE C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!MessageBoxExA 75DAD639 5 Bytes JMP 6E9F425C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!MessageBoxExW 75DAD65D 5 Bytes JMP 6E9F41FA C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] USER32.dll!keybd_event 75DAD972 5 Bytes JMP 6E9F5BC7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] SHELL32.dll!SHRestricted + D95 76B98988 4 Bytes [4D, 30, BE, 6D]
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] SHELL32.dll!SHRestricted + D9D 76B98990 8 Bytes [57, 2F, BE, 6D, 9C, 5B, BD, ...] {PUSH EDI; DAS ; MOV ESI, 0xbd5b9c6d; INSD }
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] ole32.dll!OleLoadFromStream 769E1E12 5 Bytes JMP 6E9F4778 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] ole32.dll!CoGetTreatAsClass + D2F 769FFAB7 7 Bytes JMP 049D01A9
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] ole32.dll!CoCreateInstance 76A19EA6 5 Bytes JMP 6E8FDA18 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] ole32.dll!CoCreateInstance + 3E 76A19EE4 7 Bytes JMP 049D00F3
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] WS2_32.dll!closesocket 7785330C 5 Bytes JMP 6C57EEE9 C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] WS2_32.dll!recv 7785343A 5 Bytes JMP 6C57F1C3 C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] WS2_32.dll!socket 778536D1 5 Bytes JMP 6C57E59E C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] WS2_32.dll!connect 778540D9 5 Bytes JMP 6C57E62A C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] WS2_32.dll!getaddrinfo 7785418A 5 Bytes JMP 6C57E71D C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[2604] WS2_32.dll!send 7785659B 5 Bytes JMP 6C57E9ED C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] ntdll.dll!RtlEncodeSystemPointer + 873 7764938B 10 Bytes JMP 047D003A
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!CreateDialogParamW 75D572A2 5 Bytes JMP 6E8FDD48 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!GetAsyncKeyState 75D5863C 5 Bytes JMP 6E8190A7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!SetWindowsHookExW 75D587AD 5 Bytes JMP 6E8F9B29 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!CallNextHookEx 75D58E3B 5 Bytes JMP 6E8ED171 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!UnhookWindowsHookEx 75D598DB 5 Bytes JMP 6E86486E C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!EnableWindow 75D5CD8B 5 Bytes JMP 6E8FDBD5 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!CreateWindowExW 75D61305 5 Bytes JMP 6E8FD9BC C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!GetKeyState 75D68CB1 5 Bytes JMP 6E8FD183 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!IsDialogMessageW 75D70745 5 Bytes JMP 6E825B9B C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!CreateDialogParamA 75D717AA 5 Bytes JMP 6E9F507C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!IsDialogMessage 75D71847 5 Bytes JMP 6E9F4918 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!CreateDialogIndirectParamA 75D726F1 5 Bytes JMP 6E9F50B3 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!CreateDialogIndirectParamW 75D79A62 5 Bytes JMP 6E9F50EA C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!SetKeyboardState 75D80987 5 Bytes JMP 6E9F4C87 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!DialogBoxParamW 75D810B0 5 Bytes JMP 6E825689 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!DialogBoxIndirectParamW 75D82EF5 5 Bytes JMP 6E9F43F7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!SendInput 75D82F75 5 Bytes JMP 6E9F5843 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!EndDialog 75D8326E 5 Bytes JMP 6E828042 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!SetCursorPos 75D96FB2 5 Bytes JMP 6E9F5897 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!DialogBoxParamA 75D98152 5 Bytes JMP 6E9F4394 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!DialogBoxIndirectParamA 75D9847D 5 Bytes JMP 6E9F445A C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!MessageBoxIndirectA 75DAD4D9 5 Bytes JMP 6E9F4329 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!MessageBoxIndirectW 75DAD5D3 5 Bytes JMP 6E9F42BE C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!MessageBoxExA 75DAD639 5 Bytes JMP 6E9F425C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!MessageBoxExW 75DAD65D 5 Bytes JMP 6E9F41FA C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] USER32.dll!keybd_event 75DAD972 5 Bytes JMP 6E9F5BC7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] SHELL32.dll!SHRestricted + D95 76B98988 4 Bytes [4D, 30, BE, 6D]
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] SHELL32.dll!SHRestricted + D9D 76B98990 8 Bytes [57, 2F, BE, 6D, 9C, 5B, BD, ...] {PUSH EDI; DAS ; MOV ESI, 0xbd5b9c6d; INSD }
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] ole32.dll!OleLoadFromStream 769E1E12 5 Bytes JMP 6E9F4778 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] ole32.dll!CoGetTreatAsClass + D2F 769FFAB7 7 Bytes JMP 047D03CF
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] ole32.dll!CoCreateInstance 76A19EA6 5 Bytes JMP 6E8FDA18 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] ole32.dll!CoCreateInstance + 3E 76A19EE4 7 Bytes JMP 047D031B
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] WS2_32.dll!closesocket 7785330C 5 Bytes JMP 6C57EEE9 C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] WS2_32.dll!recv 7785343A 5 Bytes JMP 6C57F1C3 C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] WS2_32.dll!socket 778536D1 5 Bytes JMP 6C57E59E C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] WS2_32.dll!connect 778540D9 5 Bytes JMP 6C57E62A C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] WS2_32.dll!getaddrinfo 7785418A 5 Bytes JMP 6C57E71D C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4312] WS2_32.dll!send 7785659B 5 Bytes JMP 6C57E9ED C:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!CreateWindowExW 75D61305 5 Bytes JMP 6E8FD9BC C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!DialogBoxParamW 75D810B0 5 Bytes JMP 6E825689 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!DialogBoxIndirectParamW 75D82EF5 5 Bytes JMP 6E9F43F7 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!DialogBoxParamA 75D98152 5 Bytes JMP 6E9F4394 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!DialogBoxIndirectParamA 75D9847D 5 Bytes JMP 6E9F445A C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!MessageBoxIndirectA 75DAD4D9 5 Bytes JMP 6E9F4329 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!MessageBoxIndirectW 75DAD5D3 5 Bytes JMP 6E9F42BE C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!MessageBoxExA 75DAD639 5 Bytes JMP 6E9F425C C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Internet Explorer\iexplore.exe[4556] USER32.dll!MessageBoxExW 75DAD65D 5 Bytes JMP 6E9F41FA C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
    .text C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE[4628] kernel32.dll!SetUnhandledExceptionFilter 7600A84F 5 Bytes JMP 66595436 C:\Program Files\Common Files\Microsoft Shared\office12\mso.dll (2007 Microsoft Office component/Microsoft Corporation)
     
  9. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    Results log 3

    ---- Kernel IAT/EAT - GMER 1.0.15 ----
    IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar] [82A8E6D6] \SystemRoot\System32\Drivers\spmy.sys
    IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar] [82A8E042] \SystemRoot\System32\Drivers\spmy.sys
    IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort] [82A8E800] \SystemRoot\System32\Drivers\spmy.sys
    IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUshort] [82A8E0C0] \SystemRoot\System32\Drivers\spmy.sys
    IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort] [82A8E13E] \SystemRoot\System32\Drivers\spmy.sys
    IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [82A9DB90] \SystemRoot\System32\Drivers\spmy.sys
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortNotification] 9831BC8D
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortWritePortUchar] 33000000
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortWritePortUlong] 40C683C9
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortGetPhysicalAddress] C10FF041
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortConvertPhysicalAddressToUlong] FF45C60E
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortGetScatterGatherList] 8BA8EB01
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortReadPortUchar] 11890855
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortStallExecution] CB8BD08A
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortGetParentBusType] 0ACC87C7
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortRequestCallback] 00010000
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortWritePortBufferUshort] D6FF0000
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortGetUnCachedExtension] E8F475FF
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortCompleteRequest] FFFFF13E
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortMoveMemory] 00FF7D80
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortCompleteAllActiveRequests] 0090850F
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortReleaseRequestSenseIrb] 75FF0000
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortBuildRequestSenseIrb] E8006A08
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortReadPortUshort] 0001E7FA
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortReadPortBufferUshort] 000081E9
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortInitialize] 087D8300
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortGetDeviceBase] BF7B7501
    IAT \SystemRoot\System32\Drivers\ayojjaxo.SYS[ataport.SYS!AtaPortDeviceStateChange] [889C2FB0] \SystemRoot\System32\Drivers\ayojjaxo.SYS (ATAPI IDE Miniport Driver/Microsoft Corporation)
     
  10. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    results log 4

    ---- User IAT/EAT - GMER 1.0.15 ----
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [744F7817] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [7454A86D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [744FBB22] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [744EF695] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [744F75E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [744EE7CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [74528395] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [744FDA60] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [744EFFFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [744EFF61] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [744E71CF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [7457CAE2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [7451C8D8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [744ED968] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [744E6853] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [744E687E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Windows\Explorer.EXE[764] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [744F2AD1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CopyFileW] [6DBCE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!MoveFileW] [6DBD0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [6DBCA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6DBD1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [6DBD2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6DBCDC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6DBCD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6DBDFBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegEnumValueW] [6DBE051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegOpenKeyExW] [6DBDEB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryValueExW] [6DBDF817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegDeleteKeyW] [6DBDEF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCreateKeyExW] [6DBDE5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCloseKey] [6DBDED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [6DBCE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileA] [6DBD2CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileA] [6DBD2926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileW] [6DBD2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesA] [6DBCBD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryA] [6DBD173F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesA] [6DBCBFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryA] [6DBD0F0F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryA] [6DBD14E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileA] [6DBCED1B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesW] [6DBCBEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryW] [6DBD1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesW] [6DBCC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryW] [6DBD103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileW] [6DBD0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
     
  11. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    Results log 5

    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryW] [6DBD1614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileA] [6DBD0921] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [6DBCA073] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [6DBCA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileA] [6DBCE717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [6DBD0C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [6DBCDC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [6DBCD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [6DBCD361] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [6DBCC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [6DBD2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [6DBCBEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [6DBCBFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [6DBCE717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [6DBD2CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [6DBD2926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [6DBD23A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [6DBCBD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpW] [6DBCFAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpA] [6DBCF973] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCloseKey] [6DBDED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExA] [6DBDE43D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyA] [6DBDEDE8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyA] [6DBDF9B7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExA] [6DBDE9C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExW] [6DBDE5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExW] [6DBDEB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExW] [6DBE020D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueW] [6DBDF4DB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyW] [6DBDEF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6DBDFBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExW] [6DBDF817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueW] [6DBE051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyW] [6DBDFF19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExA] [6DBE0085] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueA] [6DBE0395] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyA] [6DBDFDAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExA] [6DBDF677] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [6DBCCFA8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindNextFileW] [6DBD2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [6DBD0C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [6DBCD22A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [6DBCD9DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6DBCDC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [6DBCEB68] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6DBD1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [6DBCE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [6DBCCAA7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [6DBCA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [6DBD0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [6DBCC709] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesA] [6DBCBD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [6DBCCD20] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6DBCD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!RemoveDirectoryW] [6DBD1614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateDirectoryW] [6DBD103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetFileAttributesW] [6DBCC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesW] [6DBCBEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [6DBD09B9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameW] [6DBCC848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesExW] [6DBCC368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetLongPathNameW] [6DBCC5D8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [6DBCF0D0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [6DBCFAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [6DBCF5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [6DBD65DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [6DBD620B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [6DBD7595] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [6DBD60AE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [6DBD615B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [6DBD75E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [6DBD6533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [6DBD799A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [6DBD684F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [6DBD6E45] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [6DBD6AFB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [6DBD6B47] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [6DBD7281] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [6DBD6716] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [6DBD71ED] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [6DBD7021] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
     
  12. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    results log 6

    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [6DBD7FBE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [6DBD7159] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [6DBD68E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsSystemFolderW] [6DBD6BE2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [6DBD6803] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [6DBD6F81] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [6DBD63A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [6DBD80BD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [6DBD8513] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [6DBD8176] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [6DBD7BA4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [6DBD8235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [6DBD697F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [6DBD6DAD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [6DBD6D15] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [6DBD731F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [6DBD6EDD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [6DBD6C7D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [6DBD6AAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [6DBD78EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [6DBD63F4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [6DBD76D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [6DBD8732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [6DBD777E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [6DBD7831] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [6DBD667B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [6DBD7636] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [6DBCBB38] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [6DBCA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetShortPathNameW] [6DBCC848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesExW] [6DBCC368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesW] [6DBCBEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\SAMLIB.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [6DBD8235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [6DBD81D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [6DBD72CD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [6DBD75E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [6DBD76D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [6DBD65DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [6DBD788F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [6DBD86D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [6DBD78EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [6DBD8732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCombineW] [6DBD6533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\IPHLPAPI.DLL [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[2604] @ C:\Windows\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
     
  13. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    results log 7

    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CopyFileW] [6DBCE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!MoveFileW] [6DBD0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [6DBCA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6DBD1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [6DBD2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6DBCDC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6DBCD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6DBDFBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegEnumValueW] [6DBE051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegOpenKeyExW] [6DBDEB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryValueExW] [6DBDF817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegDeleteKeyW] [6DBDEF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCreateKeyExW] [6DBDE5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCloseKey] [6DBDED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [6DBCE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileA] [6DBD2CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileA] [6DBD2926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindNextFileW] [6DBD2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesA] [6DBCBD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryA] [6DBD173F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesA] [6DBCBFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryA] [6DBD0F0F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryA] [6DBD14E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileA] [6DBCED1B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetFileAttributesW] [6DBCBEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetCurrentDirectoryW] [6DBD1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!SetFileAttributesW] [6DBCC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateDirectoryW] [6DBD103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileW] [6DBD0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!RemoveDirectoryW] [6DBD1614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileA] [6DBD0921] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [6DBCA073] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [6DBCA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileA] [6DBCE717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [6DBD0C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [6DBCDC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [6DBCD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [6DBCD361] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [6DBCC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [6DBD2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [6DBCBEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [6DBCBFCD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [6DBCE717] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [6DBD2CD2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [6DBD2926] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [6DBD23A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [6DBCBD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpW] [6DBCFAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpA] [6DBCF973] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCloseKey] [6DBDED95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExA] [6DBDE43D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyA] [6DBDEDE8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyA] [6DBDF9B7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExA] [6DBDE9C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExW] [6DBDE5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExW] [6DBDEB3D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExW] [6DBE020D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueW] [6DBDF4DB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyW] [6DBDEF31] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyW] [6DBDFBB3] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExW] [6DBDF817] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueW] [6DBE051D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyW] [6DBDFF19] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExA] [6DBE0085] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueA] [6DBE0395] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyA] [6DBDFDAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExA] [6DBDF677] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [6DBCCFA8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindNextFileW] [6DBD2999] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [6DBD0C95] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [6DBCD22A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [6DBCD9DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [6DBCDC5C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [6DBCEB68] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetCurrentDirectoryW] [6DBD1D56] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
     
  14. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    results log 8

    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [6DBCE1E9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [6DBCCAA7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [6DBCA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [6DBD0994] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [6DBCC709] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesA] [6DBCBD77] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [6DBCCD20] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [6DBCD4B8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!RemoveDirectoryW] [6DBD1614] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateDirectoryW] [6DBD103D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetFileAttributesW] [6DBCC0FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesW] [6DBCBEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [6DBD09B9] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameW] [6DBCC848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesExW] [6DBCC368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetLongPathNameW] [6DBCC5D8] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [6DBCF0D0] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [6DBCFAAA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [6DBCF5C5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCreateFromUrlW] [6DBD65DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringByKeyW] [6DBD620B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHCreateStreamOnFileW] [6DBD7595] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryKeyW] [6DBD60AE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!AssocQueryStringW] [6DBD615B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyA] [6DBD75E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathCombineW] [6DBD6533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHOpenRegStream2W] [6DBD799A] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryW] [6DBD684F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsURLW] [6DBD6E45] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootA] [6DBD6AFB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRootW] [6DBD6B47] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripToRootW] [6DBD7281] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFindOnPathW] [6DBD6716] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathStripPathW] [6DBD71ED] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRemoveArgsW] [6DBD7021] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetBoolUSValueW] [6DBD7FBE] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathSkipRootW] [6DBD7159] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryEmptyW] [6DBD68E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsSystemFolderW] [6DBD6BE2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsDirectoryA] [6DBD6803] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathRelativePathToW] [6DBD6F81] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootA] [6DBD63A5] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetPathW] [6DBD80BD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegSetPathW] [6DBD8513] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetUSValueW] [6DBD8176] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHQueryValueExW] [6DBD7BA4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHRegGetValueW] [6DBD8235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsNetworkPathW] [6DBD697F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerShareW] [6DBD6DAD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCServerW] [6DBD6D15] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathUnExpandEnvStringsW] [6DBD731F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathMakeSystemFolderW] [6DBD6EDD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsUNCW] [6DBD6C7D] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathIsRelativeW] [6DBD6AAF] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHGetValueW] [6DBD78EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathBuildRootW] [6DBD63F4] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteValueW] [6DBD76D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHSetValueW] [6DBD8732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumKeyExW] [6DBD777E] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHEnumValueW] [6DBD7831] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!PathFileExistsW] [6DBD667B] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [SHLWAPI.dll!SHDeleteKeyW] [6DBD7636] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [6DBCBB38] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindClose] [6DBD3ADC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindFirstFileW] [6DBD3035] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [6DBD007C] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!SearchPathW] [6DBD1AEC] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [6DBCA3FB] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!DeleteFileW] [6DBCEE46] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetShortPathNameW] [6DBCC848] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesExW] [6DBCC368] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateFileW] [6DBCE860] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [6DBCFD66] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesW] [6DBCBEA2] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [6DBCFBE1] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\SAMLIB.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [6DBD8235] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [6DBD81D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [6DBD72CD] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [6DBD75E7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [6DBD76D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [6DBD65DA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [6DBD788F] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [6DBD86D7] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [6DBD78EA] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [6DBD8732] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCombineW] [6DBD6533] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
    IAT C:\Program Files\Internet Explorer\iexplore.exe[4312] @ C:\Windows\system32\IPHLPAPI.DLL [KERNEL32.dll!GetProcAddress] [6DBC82F6] C:\Program Files\Internet Explorer\IEShims.dll (Internet Explorer Compatibility Shims/Microsoft Corporation)
     
  15. clayton2010

    clayton2010 Thread Starter

    Joined:
    Mar 30, 2010
    Messages:
    39
    results log 9

    ---- Devices - GMER 1.0.15 ----
    Device 85A151F8
    Device Ntfs.sys (NT File System Driver/Microsoft Corporation)
    AttachedDevice tdrpm251.sys (Acronis Try&Decide Volume Filter Driver/Acronis)
    Device \Driver\netbt \Device\NetBT_Tcpip_{F4839B3F-050E-46C9-B658-210B51E3563A} 868E8500
    Device \Driver\volmgr \Device\VolMgrControl 84C801F8
    Device \Driver\usbuhci \Device\USBPDO-0 85F7C500
    Device \Driver\usbuhci \Device\USBPDO-1 85F7C500
    Device cbfs.sys
    Device \Driver\usbuhci \Device\USBPDO-2 85F7C500
    Device \Driver\usbuhci \Device\USBPDO-3 85F7C500
    Device \Driver\usbehci \Device\USBPDO-4 85F84500
    AttachedDevice \Driver\tdx \Device\Tcp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
    Device 84C801F8
    AttachedDevice fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
    Device \Driver\cdrom \Device\CdRom0 85F88500
    Device usbhub.sys (Default Hub Driver for USB/Microsoft Corporation)
    Device \Driver\PCI_PNP5667 \Device\00000059 spmy.sys
    Device \Driver\cdrom \Device\CdRom1 85F88500
    Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-2 85A121F8
    Device \Driver\atapi \Device\Ide\IdePort0 85A121F8
    Device \Driver\atapi \Device\Ide\IdePort1 85A121F8
    Device \Driver\atapi \Device\Ide\IdePort2 85A121F8
    Device \Driver\atapi \Device\Ide\IdePort3 85A121F8
    Device \Driver\atapi \Device\Ide\IdeDeviceP2T1L0-3 85A121F8
    Device pci.sys (NT Plug and Play PCI Enumerator/Microsoft Corporation)
    Device \Driver\netbt \Device\NetBt_Wins_Export 868E8500
    Device \Driver\USBSTOR \Device\00000077 8F0D7500
    Device \Driver\Smb \Device\NetbiosSmb 868BC500
    Device \Driver\viamraid \Device\RaidPort0 85A141F8
    AttachedDevice \Driver\tdx \Device\Udp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
    Device \Driver\iScsiPrt \Device\RaidPort1 85FA0500
    Device \Driver\viamraid \Device\0000006a 85A141F8
    Device \Driver\usbuhci \Device\USBFDO-0 85F7C500
    Device \Driver\USBSTOR \Device\0000007a 8F0D7500
    Device \Driver\usbuhci \Device\USBFDO-1 85F7C500
    Device \Driver\usbuhci \Device\USBFDO-2 85F7C500
    Device \Driver\usbuhci \Device\USBFDO-3 85F7C500
    Device \Driver\usbehci \Device\USBFDO-4 85F84500
    Device \Driver\sptd \Device\1631415677 spmy.sys
    Device \Driver\ayojjaxo \Device\Scsi\ayojjaxo1 85F90500
    Device \Driver\ayojjaxo \Device\Scsi\ayojjaxo1Port7Path0Target0Lun0 85F90500
    Device \FileSystem\cdfs \Cdfs 852D91F8
    ---- Registry - GMER 1.0.15 ----
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\[email protected] 771343423
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\[email protected] 285507792
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\[email protected] 2
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\[email protected] C:\Program Files\Alcohol Soft\Alcohol 120\
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\[email protected] 1
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\[email protected] 0x13 0x42 0xBA 0xF4 ...
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\[email protected] 0x20 0x01 0x00 0x00 ...
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\[email protected] 0xC0 0x9C 0xA7 0xA4 ...
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\[email protected] 0xC2 0xE3 0x6F 0xB5 ...
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\[email protected] 0
    Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\[email protected] 0x51 0x6D 0xA2 0x44 ...
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\[email protected] C:\Program Files\Alcohol Soft\Alcohol 120\
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\[email protected] 1
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\[email protected] 0x13 0x42 0xBA 0xF4 ...
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\[email protected] 0x20 0x01 0x00 0x00 ...
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\[email protected] 0xC0 0x9C 0xA7 0xA4 ...
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet)
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\[email protected] 0xC2 0xE3 0x6F 0xB5 ...
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\[email protected] 0
    Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\[email protected] 0x51 0x6D 0xA2 0x44 ...
    ---- EOF - GMER 1.0.15 ----
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/913645

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice