Vytížení cpu, pomalý počítač. Vyřešeno

[BAJLA]

Pomalý počítač. Když pustim film tak se seká přes media plaer vitížení procesoru 100 procent. Také mám vitížení procesoru když je počítač v klidu. Pomalý start windowsu a pomalé vypínání počítače.


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:35:11, on 8.4.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16540)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Users\Žaneta\Desktop\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe

--
End of file - 2388 bytes

[Reklama]

[jaro3]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.



Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

[BAJLA]

# AdwCleaner v3.023 - Report created 09/04/2014 at 14:57:15
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : Žaneta - ŽANETA-PC
# Running from : C:\Users\Žaneta\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16540


-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\Žaneta\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [622 octets] - [09/04/2014 14:57:15]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [681 octets] ##########

[BAJLA]

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 9.4.2014
Scan Time: 15:39:13
Logfile: 0.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.09.04
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: A1aneta

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 210023
Time Elapsed: 23 min, 53 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

[jaro3]

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[BAJLA]

Když zapnu JRT tak mi naskočí okno a nic se neděje.

Výstřižek.PNG (10.75 KiB) Zobrazeno 656 x

[BAJLA]

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Žaneta [Práva správce]
Mód : Kontrola -- Datum : 04/10/2014 16:20:26
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] EAT @explorer.exe (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC09AE)
[Address] EAT @explorer.exe (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB49A1)
[Address] EAT @explorer.exe (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE0731)
[Address] EAT @explorer.exe (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB6395)
[Address] EAT @explorer.exe (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB940E)
[Address] EAT @explorer.exe (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC08ED)
[Address] EAT @explorer.exe (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DCE6B3)
[Address] EAT @explorer.exe (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DCD395)
[Address] EAT @explorer.exe (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB94AB)
[Address] EAT @explorer.exe (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB6A18)
[Address] EAT @explorer.exe (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB3982)
[Address] EAT @explorer.exe (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DCD9DA)
[Address] EAT @explorer.exe (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DD3B52)
[Address] EAT @explorer.exe (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE35E7)
[Address] EAT @explorer.exe (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB53E5)
[Address] EAT @explorer.exe (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB51BF)
[Address] EAT @explorer.exe (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB4EA1)
[Address] EAT @explorer.exe (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB63E6)
[Address] EAT @explorer.exe (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBFCAF)
[Address] EAT @explorer.exe (EnableTheming) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE2FEB)
[Address] EAT @explorer.exe (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB3F9A)
[Address] EAT @explorer.exe (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB3F9A)
[Address] EAT @explorer.exe (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE06CC)
[Address] EAT @explorer.exe (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB4BAF)
[Address] EAT @explorer.exe (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC04BC)
[Address] EAT @explorer.exe (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC0473)
[Address] EAT @explorer.exe (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE2E7F)
[Address] EAT @explorer.exe (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC05DD)
[Address] EAT @explorer.exe (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC0FB1)
[Address] EAT @explorer.exe (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBCD2E)
[Address] EAT @explorer.exe (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBF8BF)
[Address] EAT @explorer.exe (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC165D)
[Address] EAT @explorer.exe (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBBF93)
[Address] EAT @explorer.exe (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB7C1F)
[Address] EAT @explorer.exe (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE2932)
[Address] EAT @explorer.exe (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE2412)
[Address] EAT @explorer.exe (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBFF21)
[Address] EAT @explorer.exe (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE23B1)
[Address] EAT @explorer.exe (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB86E9)
[Address] EAT @explorer.exe (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC06E2)
[Address] EAT @explorer.exe (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBCDB1)
[Address] EAT @explorer.exe (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE2350)
[Address] EAT @explorer.exe (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DD3FBB)
[Address] EAT @explorer.exe (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC3611)
[Address] EAT @explorer.exe (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC39D9)
[Address] EAT @explorer.exe (GetThemeString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE22E4)
[Address] EAT @explorer.exe (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE3172)
[Address] EAT @explorer.exe (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DD3274)
[Address] EAT @explorer.exe (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE301E)
[Address] EAT @explorer.exe (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE29C4)
[Address] EAT @explorer.exe (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE2BD3)
[Address] EAT @explorer.exe (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE320B)
[Address] EAT @explorer.exe (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE2B3F)
[Address] EAT @explorer.exe (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB2D57)
[Address] EAT @explorer.exe (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBF992)
[Address] EAT @explorer.exe (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC1081)
[Address] EAT @explorer.exe (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBDF46)
[Address] EAT @explorer.exe (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC3CE3)
[Address] EAT @explorer.exe (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBF869)
[Address] EAT @explorer.exe (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB2E9A)
[Address] EAT @explorer.exe (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBF785)
[Address] EAT @explorer.exe (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB60AB)
[Address] EAT @explorer.exe (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE312B)
[Address] EAT @explorer.exe (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB85B4)
[Address] EAT @explorer.exe (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DB73D2)
[Address] EAT @explorer.exe (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DD3D43)
[Address] EAT @explorer.exe (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE3296)
[Address] EAT @explorer.exe (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DC0134)
[Address] EAT @explorer.exe (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DCCFE6)
[Address] EAT @explorer.exe (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DBB176)
[Address] EAT @explorer.exe (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73DE068D)
[Address] EAT @explorer.exe (DllGetClassObject) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394CF9D)
[Address] EAT @explorer.exe (IEnumString_Next_WIC_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E000)
[Address] EAT @explorer.exe (IEnumString_Reset_WIC_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E029)
[Address] EAT @explorer.exe (IPropertyBag2_Write_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E049)
[Address] EAT @explorer.exe (IWICBitmapClipper_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DD2A)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_DoesSupportAnimation_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EA9A)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_DoesSupportLossless_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EABD)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_DoesSupportMultiframe_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EAE0)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetContainerFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E9D3)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetDeviceManufacturer_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E9F6)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetDeviceModels_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EA1F)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetFileExtensions_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EA71)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetMimeTypes_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EA48)
[Address] EAT @explorer.exe (IWICBitmapDecoder_CopyPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D845)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E9AA)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetDecoderInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D822)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetFrameCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D9A2)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetFrame_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D868)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetMetadataQueryReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D8DA)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetPreview_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC74)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E9D3)
[Address] EAT @explorer.exe (IWICBitmapEncoder_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC05)
[Address] EAT @explorer.exe (IWICBitmapEncoder_CreateNewFrame_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DB87)
[Address] EAT @explorer.exe (IWICBitmapEncoder_GetEncoderInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DB5E)
[Address] EAT @explorer.exe (IWICBitmapEncoder_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D9A2)
[Address] EAT @explorer.exe (IWICBitmapEncoder_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DB32)
[Address] EAT @explorer.exe (IWICBitmapEncoder_SetPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DBDC)
[Address] EAT @explorer.exe (IWICBitmapEncoder_SetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DBB3)
[Address] EAT @explorer.exe (IWICBitmapFlipRotator_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DD2A)
[Address] EAT @explorer.exe (IWICBitmapFrameDecode_GetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D88E)
[Address] EAT @explorer.exe (IWICBitmapFrameDecode_GetMetadataQueryReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D8DA)
[Address] EAT @explorer.exe (IWICBitmapFrameDecode_GetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D8B7)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D9C5)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EB03)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DFB7)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_SetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DB06)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_SetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DA17)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_SetSize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D9E5)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_SetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DADD)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_WriteSource_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DA71)
[Address] EAT @explorer.exe (IWICBitmapLock_GetDataPointer_STA_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D7FC)
[Address] EAT @explorer.exe (IWICBitmapLock_GetStride_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC25)
[Address] EAT @explorer.exe (IWICBitmapScaler_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DCFE)
[Address] EAT @explorer.exe (IWICBitmapSource_CopyPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D822)
[Address] EAT @explorer.exe (IWICBitmapSource_CopyPixels_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC48)
[Address] EAT @explorer.exe (IWICBitmapSource_GetPixelFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC25)
[Address] EAT @explorer.exe (IWICBitmapSource_GetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D7FC)
[Address] EAT @explorer.exe (IWICBitmapSource_GetSize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D91D)
[Address] EAT @explorer.exe (IWICBitmap_Lock_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E981)
[Address] EAT @explorer.exe (IWICBitmap_SetPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC74)
[Address] EAT @explorer.exe (IWICBitmap_SetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC97)
[Address] EAT @explorer.exe (IWICColorContext_InitializeFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EB75)
[Address] EAT @explorer.exe (IWICComponentFactory_CreateMetadataWriterFromReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D7AA)
[Address] EAT @explorer.exe (IWICComponentFactory_CreateQueryWriterFromBlockWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D7D3)
[Address] EAT @explorer.exe (IWICComponentInfo_GetAuthor_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E958)
[Address] EAT @explorer.exe (IWICComponentInfo_GetCLSID_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC25)
[Address] EAT @explorer.exe (IWICComponentInfo_GetFriendlyName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E9AA)
[Address] EAT @explorer.exe (IWICComponentInfo_GetSpecVersion_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D88E)
[Address] EAT @explorer.exe (IWICComponentInfo_GetVersion_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E981)
[Address] EAT @explorer.exe (IWICFastMetadataEncoder_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D8FD)
[Address] EAT @explorer.exe (IWICFastMetadataEncoder_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC25)
[Address] EAT @explorer.exe (IWICFormatConverter_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DCC7)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapClipper_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D557)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFlipRotator_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D580)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFromHBITMAP_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D6BA)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFromHICON_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D6E6)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D656)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFromSource_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D62D)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapScaler_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D52E)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmap_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D68B)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateComponentInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D4D9)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateDecoderFromFileHandle_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D4A1)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateDecoderFromFilename_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D466)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateDecoderFromStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D42E)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateEncoder_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D5D2)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateFastMetadataEncoderFromDecoder_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D70C)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateFastMetadataEncoderFromFrameDecode_ProxùÈ
¯�?˜Nø") : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D732)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateFormatConverter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D505)
[Address] EAT @explorer.exe (IWICImagingFactory_CreatePalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DADD)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateQueryWriterFromReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D781)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D758)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D5A9)
[Address] EAT @explorer.exe (IWICMetadataBlockReader_GetCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DC25)
[Address] EAT @explorer.exe (IWICMetadataBlockReader_GetReaderByIndex_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D7FC)
[Address] EAT @explorer.exe (IWICMetadataQueryReader_GetContainerFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DFB7)
[Address] EAT @explorer.exe (IWICMetadataQueryReader_GetEnumerator_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D822)
[Address] EAT @explorer.exe (IWICMetadataQueryReader_GetLocation_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E049)
[Address] EAT @explorer.exe (IWICMetadataQueryReader_GetMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D7FC)
[Address] EAT @explorer.exe (IWICMetadataQueryWriter_RemoveMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D8DA)
[Address] EAT @explorer.exe (IWICMetadataQueryWriter_SetMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DFDA)
[Address] EAT @explorer.exe (IWICPalette_GetColorCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D96C)
[Address] EAT @explorer.exe (IWICPalette_GetColors_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D88E)
[Address] EAT @explorer.exe (IWICPalette_GetType_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D845)
[Address] EAT @explorer.exe (IWICPalette_HasAlpha_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D9A2)
[Address] EAT @explorer.exe (IWICPalette_InitializeCustom_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EB75)
[Address] EAT @explorer.exe (IWICPalette_InitializeFromBitmap_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D943)
[Address] EAT @explorer.exe (IWICPalette_InitializeFromPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D822)
[Address] EAT @explorer.exe (IWICPalette_InitializePredefined_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D91D)
[Address] EAT @explorer.exe (IWICPixelFormatInfo_GetBitsPerPixel_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EB03)
[Address] EAT @explorer.exe (IWICPixelFormatInfo_GetChannelCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DD50)
[Address] EAT @explorer.exe (IWICPixelFormatInfo_GetChannelMask_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EB26)
[Address] EAT @explorer.exe (IWICStream_InitializeFromIStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DD50)
[Address] EAT @explorer.exe (IWICStream_InitializeFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DD73)
[Address] EAT @explorer.exe (WICConvertBitmapSource) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DDB8)
[Address] EAT @explorer.exe (WICCreateBitmapFromSection) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DF8D)
[Address] EAT @explorer.exe (WICCreateBitmapFromSectionEx) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DE8C)
[Address] EAT @explorer.exe (WICCreateColorContext_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394EB52)
[Address] EAT @explorer.exe (WICCreateImagingFactory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D02B)
[Address] EAT @explorer.exe (WICGetMetadataContentSize) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E61D)
[Address] EAT @explorer.exe (WICMapGuidToShortName) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D0EC)
[Address] EAT @explorer.exe (WICMapSchemaToName) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D2E0)
[Address] EAT @explorer.exe (WICMapShortNameToGuid) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394D217)
[Address] EAT @explorer.exe (WICMatchMetadataContent) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E072)
[Address] EAT @explorer.exe (WICSerializeMetadataContent) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394E1B4)
[Address] EAT @explorer.exe (WICSetEncoderFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7394DD99)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST340014A ATA Device +++++
--- User ---
[MBR] 8a3a2c105645393da1db0bb911fc549a
[BSP] 52765b7747b75dd722dc9ac57506ef31 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 38164 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) WDC WD1600JB-00GVC0 ATA Device +++++
--- User ---
[MBR] 8aa037e442d9d9c21665db00058e0709
[BSP] 0ced2f7ad1ea336f37a2fe695ecf7dff : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 51999 MB
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 106494885 | Size: 100618 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04102014_162026.txt >>

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

[BAJLA]

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Žaneta [Práva správce]
Mód : Odebrat -- Datum : 04/10/2014 20:09:05
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] EAT @explorer.exe (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA09AE)
[Address] EAT @explorer.exe (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B949A1)
[Address] EAT @explorer.exe (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC0731)
[Address] EAT @explorer.exe (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B96395)
[Address] EAT @explorer.exe (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9940E)
[Address] EAT @explorer.exe (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA08ED)
[Address] EAT @explorer.exe (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BAE6B3)
[Address] EAT @explorer.exe (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BAD395)
[Address] EAT @explorer.exe (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B994AB)
[Address] EAT @explorer.exe (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B96A18)
[Address] EAT @explorer.exe (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B93982)
[Address] EAT @explorer.exe (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BAD9DA)
[Address] EAT @explorer.exe (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BB3B52)
[Address] EAT @explorer.exe (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC35E7)
[Address] EAT @explorer.exe (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B953E5)
[Address] EAT @explorer.exe (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B951BF)
[Address] EAT @explorer.exe (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B94EA1)
[Address] EAT @explorer.exe (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B963E6)
[Address] EAT @explorer.exe (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9FCAF)
[Address] EAT @explorer.exe (EnableTheming) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC2FEB)
[Address] EAT @explorer.exe (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B93F9A)
[Address] EAT @explorer.exe (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B93F9A)
[Address] EAT @explorer.exe (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC06CC)
[Address] EAT @explorer.exe (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B94BAF)
[Address] EAT @explorer.exe (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA04BC)
[Address] EAT @explorer.exe (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA0473)
[Address] EAT @explorer.exe (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC2E7F)
[Address] EAT @explorer.exe (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA05DD)
[Address] EAT @explorer.exe (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA0FB1)
[Address] EAT @explorer.exe (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9CD2E)
[Address] EAT @explorer.exe (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9F8BF)
[Address] EAT @explorer.exe (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA165D)
[Address] EAT @explorer.exe (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9BF93)
[Address] EAT @explorer.exe (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B97C1F)
[Address] EAT @explorer.exe (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9616C)
[Address] EAT @explorer.exe (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC2932)
[Address] EAT @explorer.exe (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9616C)
[Address] EAT @explorer.exe (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC2412)
[Address] EAT @explorer.exe (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9FF21)
[Address] EAT @explorer.exe (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9616C)
[Address] EAT @explorer.exe (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC23B1)
[Address] EAT @explorer.exe (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B986E9)
[Address] EAT @explorer.exe (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA06E2)
[Address] EAT @explorer.exe (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9CDB1)
[Address] EAT @explorer.exe (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC2350)
[Address] EAT @explorer.exe (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BB3FBB)
[Address] EAT @explorer.exe (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA3611)
[Address] EAT @explorer.exe (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA39D9)
[Address] EAT @explorer.exe (GetThemeString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC22E4)
[Address] EAT @explorer.exe (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC3172)
[Address] EAT @explorer.exe (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BB3274)
[Address] EAT @explorer.exe (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC301E)
[Address] EAT @explorer.exe (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC29C4)
[Address] EAT @explorer.exe (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC2BD3)
[Address] EAT @explorer.exe (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC320B)
[Address] EAT @explorer.exe (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC2B3F)
[Address] EAT @explorer.exe (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B92D57)
[Address] EAT @explorer.exe (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9F992)
[Address] EAT @explorer.exe (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA1081)
[Address] EAT @explorer.exe (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9DF46)
[Address] EAT @explorer.exe (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA3CE3)
[Address] EAT @explorer.exe (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9F869)
[Address] EAT @explorer.exe (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B92E9A)
[Address] EAT @explorer.exe (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9F785)
[Address] EAT @explorer.exe (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B960AB)
[Address] EAT @explorer.exe (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC312B)
[Address] EAT @explorer.exe (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B985B4)
[Address] EAT @explorer.exe (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B973D2)
[Address] EAT @explorer.exe (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BB3D43)
[Address] EAT @explorer.exe (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC3296)
[Address] EAT @explorer.exe (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BA0134)
[Address] EAT @explorer.exe (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BACFE6)
[Address] EAT @explorer.exe (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73B9B176)
[Address] EAT @explorer.exe (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73BC068D)
[Address] EAT @explorer.exe (DllGetClassObject) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372CF9D)
[Address] EAT @explorer.exe (IEnumString_Next_WIC_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E000)
[Address] EAT @explorer.exe (IEnumString_Reset_WIC_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E029)
[Address] EAT @explorer.exe (IPropertyBag2_Write_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E049)
[Address] EAT @explorer.exe (IWICBitmapClipper_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DD2A)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_DoesSupportAnimation_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EA9A)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_DoesSupportLossless_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EABD)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_DoesSupportMultiframe_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EAE0)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetContainerFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E9D3)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetDeviceManufacturer_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E9F6)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetDeviceModels_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EA1F)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetFileExtensions_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EA71)
[Address] EAT @explorer.exe (IWICBitmapCodecInfo_GetMimeTypes_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EA48)
[Address] EAT @explorer.exe (IWICBitmapDecoder_CopyPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D845)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E9AA)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetDecoderInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D822)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetFrameCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D9A2)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetFrame_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D868)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetMetadataQueryReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D8DA)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetPreview_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC74)
[Address] EAT @explorer.exe (IWICBitmapDecoder_GetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E9D3)
[Address] EAT @explorer.exe (IWICBitmapEncoder_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC05)
[Address] EAT @explorer.exe (IWICBitmapEncoder_CreateNewFrame_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DB87)
[Address] EAT @explorer.exe (IWICBitmapEncoder_GetEncoderInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DB5E)
[Address] EAT @explorer.exe (IWICBitmapEncoder_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D9A2)
[Address] EAT @explorer.exe (IWICBitmapEncoder_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DB32)
[Address] EAT @explorer.exe (IWICBitmapEncoder_SetPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DBDC)
[Address] EAT @explorer.exe (IWICBitmapEncoder_SetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DBB3)
[Address] EAT @explorer.exe (IWICBitmapFlipRotator_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DD2A)
[Address] EAT @explorer.exe (IWICBitmapFrameDecode_GetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D88E)
[Address] EAT @explorer.exe (IWICBitmapFrameDecode_GetMetadataQueryReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D8DA)
[Address] EAT @explorer.exe (IWICBitmapFrameDecode_GetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D8B7)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D9C5)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EB03)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DFB7)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_SetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DB06)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_SetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DA17)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_SetSize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D9E5)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_SetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DADD)
[Address] EAT @explorer.exe (IWICBitmapFrameEncode_WriteSource_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DA71)
[Address] EAT @explorer.exe (IWICBitmapLock_GetDataPointer_STA_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D7FC)
[Address] EAT @explorer.exe (IWICBitmapLock_GetStride_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC25)
[Address] EAT @explorer.exe (IWICBitmapScaler_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DCFE)
[Address] EAT @explorer.exe (IWICBitmapSource_CopyPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D822)
[Address] EAT @explorer.exe (IWICBitmapSource_CopyPixels_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC48)
[Address] EAT @explorer.exe (IWICBitmapSource_GetPixelFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC25)
[Address] EAT @explorer.exe (IWICBitmapSource_GetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D7FC)
[Address] EAT @explorer.exe (IWICBitmapSource_GetSize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D91D)
[Address] EAT @explorer.exe (IWICBitmap_Lock_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E981)
[Address] EAT @explorer.exe (IWICBitmap_SetPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC74)
[Address] EAT @explorer.exe (IWICBitmap_SetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC97)
[Address] EAT @explorer.exe (IWICColorContext_InitializeFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EB75)
[Address] EAT @explorer.exe (IWICComponentFactory_CreateMetadataWriterFromReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D7AA)
[Address] EAT @explorer.exe (IWICComponentFactory_CreateQueryWriterFromBlockWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D7D3)
[Address] EAT @explorer.exe (IWICComponentInfo_GetAuthor_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E958)
[Address] EAT @explorer.exe (IWICComponentInfo_GetCLSID_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC25)
[Address] EAT @explorer.exe (IWICComponentInfo_GetFriendlyName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E9AA)
[Address] EAT @explorer.exe (IWICComponentInfo_GetSpecVersion_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D88E)
[Address] EAT @explorer.exe (IWICComponentInfo_GetVersion_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E981)
[Address] EAT @explorer.exe (IWICFastMetadataEncoder_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D8FD)
[Address] EAT @explorer.exe (IWICFastMetadataEncoder_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC25)
[Address] EAT @explorer.exe (IWICFormatConverter_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DCC7)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapClipper_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D557)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFlipRotator_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D580)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFromHBITMAP_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D6BA)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFromHICON_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D6E6)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D656)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapFromSource_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D62D)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmapScaler_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D52E)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateBitmap_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D68B)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateComponentInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D4D9)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateDecoderFromFileHandle_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D4A1)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateDecoderFromFilename_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D466)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateDecoderFromStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D42E)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateEncoder_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D5D2)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateFastMetadataEncoderFromDecoder_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D70C)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateFastMetadataEncoderFromFrameDecode_Prox÷ÒɵЙ
ø"9
ÿÿÿÿܙ
tD.
WÒɵ=) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D732)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateFormatConverter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D505)
[Address] EAT @explorer.exe (IWICImagingFactory_CreatePalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DADD)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateQueryWriterFromReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D781)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D758)
[Address] EAT @explorer.exe (IWICImagingFactory_CreateStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D5A9)
[Address] EAT @explorer.exe (IWICMetadataBlockReader_GetCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DC25)
[Address] EAT @explorer.exe (IWICMetadataBlockReader_GetReaderByIndex_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D7FC)
[Address] EAT @explorer.exe (IWICMetadataQueryReader_GetContainerFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DFB7)
[Address] EAT @explorer.exe (IWICMetadataQueryReader_GetEnumerator_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D822)
[Address] EAT @explorer.exe (IWICMetadataQueryReader_GetLocation_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E049)
[Address] EAT @explorer.exe (IWICMetadataQueryReader_GetMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D7FC)
[Address] EAT @explorer.exe (IWICMetadataQueryWriter_RemoveMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D8DA)
[Address] EAT @explorer.exe (IWICMetadataQueryWriter_SetMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DFDA)
[Address] EAT @explorer.exe (IWICPalette_GetColorCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D96C)
[Address] EAT @explorer.exe (IWICPalette_GetColors_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D88E)
[Address] EAT @explorer.exe (IWICPalette_GetType_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D845)
[Address] EAT @explorer.exe (IWICPalette_HasAlpha_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D9A2)
[Address] EAT @explorer.exe (IWICPalette_InitializeCustom_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EB75)
[Address] EAT @explorer.exe (IWICPalette_InitializeFromBitmap_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D943)
[Address] EAT @explorer.exe (IWICPalette_InitializeFromPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D822)
[Address] EAT @explorer.exe (IWICPalette_InitializePredefined_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D91D)
[Address] EAT @explorer.exe (IWICPixelFormatInfo_GetBitsPerPixel_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EB03)
[Address] EAT @explorer.exe (IWICPixelFormatInfo_GetChannelCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DD50)
[Address] EAT @explorer.exe (IWICPixelFormatInfo_GetChannelMask_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EB26)
[Address] EAT @explorer.exe (IWICStream_InitializeFromIStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DD50)
[Address] EAT @explorer.exe (IWICStream_InitializeFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DD73)
[Address] EAT @explorer.exe (WICConvertBitmapSource) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DDB8)
[Address] EAT @explorer.exe (WICCreateBitmapFromSection) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DF8D)
[Address] EAT @explorer.exe (WICCreateBitmapFromSectionEx) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DE8C)
[Address] EAT @explorer.exe (WICCreateColorContext_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372EB52)
[Address] EAT @explorer.exe (WICCreateImagingFactory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D02B)
[Address] EAT @explorer.exe (WICGetMetadataContentSize) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E61D)
[Address] EAT @explorer.exe (WICMapGuidToShortName) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D0EC)
[Address] EAT @explorer.exe (WICMapSchemaToName) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D2E0)
[Address] EAT @explorer.exe (WICMapShortNameToGuid) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372D217)
[Address] EAT @explorer.exe (WICMatchMetadataContent) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E072)
[Address] EAT @explorer.exe (WICSerializeMetadataContent) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372E1B4)
[Address] EAT @explorer.exe (WICSetEncoderFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x7372DD99)
[Address] EAT @explorer.exe (DllCanUnloadNow) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE12B3B)
[Address] EAT @explorer.exe (DllGetClassObject) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE2188E)
[Address] EAT @explorer.exe (DllGetVersion) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE12982)
[Address] EAT @explorer.exe (DllRegisterServer) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEA7DC5)
[Address] EAT @explorer.exe (DllUnregisterServer) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEA818F)
[Address] EAT @explorer.exe (Migrate10CachedPackagesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAC744)
[Address] EAT @explorer.exe (Migrate10CachedPackagesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAE1AC)
[Address] EAT @explorer.exe (MsiAdvertiseProductA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB257F)
[Address] EAT @explorer.exe (MsiAdvertiseProductExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB27D7)
[Address] EAT @explorer.exe (MsiAdvertiseProductExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAD6C1)
[Address] EAT @explorer.exe (MsiAdvertiseProductW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAD46F)
[Address] EAT @explorer.exe (MsiAdvertiseScriptA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB8A3F)
[Address] EAT @explorer.exe (MsiAdvertiseScriptW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBB641)
[Address] EAT @explorer.exe (MsiApplyMultiplePatchesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC5903)
[Address] EAT @explorer.exe (MsiApplyMultiplePatchesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC1057)
[Address] EAT @explorer.exe (MsiApplyPatchA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB2D5D)
[Address] EAT @explorer.exe (MsiApplyPatchW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAD943)
[Address] EAT @explorer.exe (MsiBeginTransactionA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC9441)
[Address] EAT @explorer.exe (MsiBeginTransactionW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC39D4)
[Address] EAT @explorer.exe (MsiCloseAllHandles) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED00C3)
[Address] EAT @explorer.exe (MsiCloseHandle) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED0015)
[Address] EAT @explorer.exe (MsiCollectUserInfoA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB1C3A)
[Address] EAT @explorer.exe (MsiCollectUserInfoW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAD16F)
[Address] EAT @explorer.exe (MsiConfigureFeatureA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB1D5A)
[Address] EAT @explorer.exe (MsiConfigureFeatureFromDescriptorA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBD70A)
[Address] EAT @explorer.exe (MsiConfigureFeatureFromDescriptorW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBE41B)
[Address] EAT @explorer.exe (MsiConfigureFeatureW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAD2B7)
[Address] EAT @explorer.exe (MsiConfigureProductA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBF256)
[Address] EAT @explorer.exe (MsiConfigureProductExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBDACA)
[Address] EAT @explorer.exe (MsiConfigureProductExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBE891)
[Address] EAT @explorer.exe (MsiConfigureProductW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBF581)
[Address] EAT @explorer.exe (MsiCreateAndVerifyInstallerDirectory) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE2B2E1)
[Address] EAT @explorer.exe (MsiCreateRecord) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1514)
[Address] EAT @explorer.exe (MsiCreateTransformSummaryInfoA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED55D1)
[Address] EAT @explorer.exe (MsiCreateTransformSummaryInfoW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED48EF)
[Address] EAT @explorer.exe (MsiDatabaseApplyTransformA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED48A9)
[Address] EAT @explorer.exe (MsiDatabaseApplyTransformW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1397)
[Address] EAT @explorer.exe (MsiDatabaseCommit) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED0DEB)
[Address] EAT @explorer.exe (MsiDatabaseExportA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED4792)
[Address] EAT @explorer.exe (MsiDatabaseExportW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1008)
[Address] EAT @explorer.exe (MsiDatabaseGenerateTransformA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED485D)
[Address] EAT @explorer.exe (MsiDatabaseGenerateTransformW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1270)
[Address] EAT @explorer.exe (MsiDatabaseGetPrimaryKeysA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED45FD)
[Address] EAT @explorer.exe (MsiDatabaseGetPrimaryKeysW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED3C54)
[Address] EAT @explorer.exe (MsiDatabaseImportA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED472E)
[Address] EAT @explorer.exe (MsiDatabaseImportW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED0F1E)
[Address] EAT @explorer.exe (MsiDatabaseIsTablePersistentA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED4643)
[Address] EAT @explorer.exe (MsiDatabaseIsTablePersistentW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED0C8F)
[Address] EAT @explorer.exe (MsiDatabaseMergeA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED4817)
[Address] EAT @explorer.exe (MsiDatabaseMergeW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1111)
[Address] EAT @explorer.exe (MsiDatabaseOpenViewA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED45B7)
[Address] EAT @explorer.exe (MsiDatabaseOpenViewW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED02B7)
[Address] EAT @explorer.exe (MsiDecomposeDescriptorA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBDA7B)
[Address] EAT @explorer.exe (MsiDecomposeDescriptorW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE06286)
[Address] EAT @explorer.exe (MsiDeleteUserDataA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBA367)
[Address] EAT @explorer.exe (MsiDeleteUserDataW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB69EB)
[Address] EAT @explorer.exe (MsiDetermineApplicablePatchesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FECD4C5)
[Address] EAT @explorer.exe (MsiDetermineApplicablePatchesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FECC559)
[Address] EAT @explorer.exe (MsiDeterminePatchSequenceA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FECD9D9)
[Address] EAT @explorer.exe (MsiDeterminePatchSequenceW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FECC9E1)
[Address] EAT @explorer.exe (MsiDoActionA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED613D)
[Address] EAT @explorer.exe (MsiDoActionW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED2D61)
[Address] EAT @explorer.exe (MsiEnableLogA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB189B)
[Address] EAT @explorer.exe (MsiEnableLogW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAFBE9)
[Address] EAT @explorer.exe (MsiEnableUIPreview) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED39CD)
[Address] EAT @explorer.exe (MsiEndTransaction) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC3E11)
[Address] EAT @explorer.exe (MsiEnumClientsA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE2EC96)
[Address] EAT @explorer.exe (MsiEnumClientsExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC5D6E)
[Address] EAT @explorer.exe (MsiEnumClientsExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC13A7)
[Address] EAT @explorer.exe (MsiEnumClientsW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE13647)
[Address] EAT @explorer.exe (MsiEnumComponentCostsA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED7847)
[Address] EAT @explorer.exe (MsiEnumComponentCostsW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED7A95)
[Address] EAT @explorer.exe (MsiEnumComponentQualifiersA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBCD6D)
[Address] EAT @explorer.exe (MsiEnumComponentQualifiersW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE1384D)

[BAJLA]

[Address] EAT @explorer.exe (MsiEnumComponentsA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB91B9)
[Address] EAT @explorer.exe (MsiEnumComponentsExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC5B08)
[Address] EAT @explorer.exe (MsiEnumComponentsExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC121D)
[Address] EAT @explorer.exe (MsiEnumComponentsW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBBA57)
[Address] EAT @explorer.exe (MsiEnumFeaturesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB9C04)
[Address] EAT @explorer.exe (MsiEnumFeaturesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBC259)
[Address] EAT @explorer.exe (MsiEnumPatchesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC97EB)
[Address] EAT @explorer.exe (MsiEnumPatchesExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC4897)
[Address] EAT @explorer.exe (MsiEnumPatchesExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC0E79)
[Address] EAT @explorer.exe (MsiEnumPatchesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC468E)
[Address] EAT @explorer.exe (MsiEnumProductsA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB9175)
[Address] EAT @explorer.exe (MsiEnumProductsExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC6313)
[Address] EAT @explorer.exe (MsiEnumProductsExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC1729)
[Address] EAT @explorer.exe (MsiEnumProductsW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE1559D)
[Address] EAT @explorer.exe (MsiEnumRelatedProductsA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB9109)
[Address] EAT @explorer.exe (MsiEnumRelatedProductsW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBB9EB)
[Address] EAT @explorer.exe (MsiEvaluateConditionA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED61C6)
[Address] EAT @explorer.exe (MsiEvaluateConditionW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED30C1)
[Address] EAT @explorer.exe (MsiExtractPatchXMLDataA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC4FAE)
[Address] EAT @explorer.exe (MsiExtractPatchXMLDataW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC4C22)
[Address] EAT @explorer.exe (MsiFormatRecordA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED2A73)
[Address] EAT @explorer.exe (MsiFormatRecordW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED2BF9)
[Address] EAT @explorer.exe (MsiGetActiveDatabase) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED2639)
[Address] EAT @explorer.exe (MsiGetComponentPathA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBEEBD)
[Address] EAT @explorer.exe (MsiGetComponentPathExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC6053)
[Address] EAT @explorer.exe (MsiGetComponentPathExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC1559)
[Address] EAT @explorer.exe (MsiGetComponentPathW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE062DD)
[Address] EAT @explorer.exe (MsiGetComponentStateA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED71E3)
[Address] EAT @explorer.exe (MsiGetComponentStateW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED72DC)
[Address] EAT @explorer.exe (MsiGetDatabaseState) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED0ED9)
[Address] EAT @explorer.exe (MsiGetFeatureCostA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED75FD)
[Address] EAT @explorer.exe (MsiGetFeatureCostW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED7702)
[Address] EAT @explorer.exe (MsiGetFeatureInfoA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB0D1A)
[Address] EAT @explorer.exe (MsiGetFeatureInfoW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAF5EE)
[Address] EAT @explorer.exe (MsiGetFeatureStateA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED6CD5)
[Address] EAT @explorer.exe (MsiGetFeatureStateW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED6DC3)
[Address] EAT @explorer.exe (MsiGetFeatureUsageA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBA111)
[Address] EAT @explorer.exe (MsiGetFeatureUsageW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBC9BD)
[Address] EAT @explorer.exe (MsiGetFeatureValidStatesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED7CC5)
[Address] EAT @explorer.exe (MsiGetFeatureValidStatesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED36EC)
[Address] EAT @explorer.exe (MsiGetFileHashA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB1214)
[Address] EAT @explorer.exe (MsiGetFileHashW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEACA49)
[Address] EAT @explorer.exe (MsiGetFileSignatureInformationA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB128C)
[Address] EAT @explorer.exe (MsiGetFileSignatureInformationW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEACA9F)
[Address] EAT @explorer.exe (MsiGetFileVersionA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB0EF8)
[Address] EAT @explorer.exe (MsiGetFileVersionW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB3D2F)
[Address] EAT @explorer.exe (MsiGetLanguage) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED2727)
[Address] EAT @explorer.exe (MsiGetLastErrorRecord) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1D69)
[Address] EAT @explorer.exe (MsiGetMode) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED279F)
[Address] EAT @explorer.exe (MsiGetPatchFileListA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FECD25D)
[Address] EAT @explorer.exe (MsiGetPatchFileListW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC8B6E)
[Address] EAT @explorer.exe (MsiGetPatchInfoA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBA24F)
[Address] EAT @explorer.exe (MsiGetPatchInfoExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC55E9)
[Address] EAT @explorer.exe (MsiGetPatchInfoExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC5177)
[Address] EAT @explorer.exe (MsiGetPatchInfoW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBCAFB)
[Address] EAT @explorer.exe (MsiGetProductCodeA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE2EADC)
[Address] EAT @explorer.exe (MsiGetProductCodeFromPackageCodeA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBED5F)
[Address] EAT @explorer.exe (MsiGetProductCodeFromPackageCodeW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBF353)
[Address] EAT @explorer.exe (MsiGetProductCodeW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE2EE6C)
[Address] EAT @explorer.exe (MsiGetProductInfoA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBD362)
[Address] EAT @explorer.exe (MsiGetProductInfoExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC65DE)
[Address] EAT @explorer.exe (MsiGetProductInfoExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC18FF)
[Address] EAT @explorer.exe (MsiGetProductInfoFromScriptA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB0880)
[Address] EAT @explorer.exe (MsiGetProductInfoFromScriptW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAF132)
[Address] EAT @explorer.exe (MsiGetProductInfoW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE14273)
[Address] EAT @explorer.exe (MsiGetProductPropertyA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB0B90)
[Address] EAT @explorer.exe (MsiGetProductPropertyW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAF48B)
[Address] EAT @explorer.exe (MsiGetPropertyA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED596D)
[Address] EAT @explorer.exe (MsiGetPropertyW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED5BA3)
[Address] EAT @explorer.exe (MsiGetShortcutTargetA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB2A58)
[Address] EAT @explorer.exe (MsiGetShortcutTargetW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB4689)
[Address] EAT @explorer.exe (MsiGetSourcePathA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED6209)
[Address] EAT @explorer.exe (MsiGetSourcePathW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED640D)
[Address] EAT @explorer.exe (MsiGetSummaryInformationA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED58BD)
[Address] EAT @explorer.exe (MsiGetSummaryInformationW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED4293)
[Address] EAT @explorer.exe (MsiGetTargetPathA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED65F5)
[Address] EAT @explorer.exe (MsiGetTargetPathW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED67F9)
[Address] EAT @explorer.exe (MsiGetUserInfoA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB91FE)
[Address] EAT @explorer.exe (MsiGetUserInfoW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE2E466)
[Address] EAT @explorer.exe (MsiInstallMissingComponentA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB22C7)
[Address] EAT @explorer.exe (MsiInstallMissingComponentW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB43D9)
[Address] EAT @explorer.exe (MsiInstallMissingFileA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB2067)
[Address] EAT @explorer.exe (MsiInstallMissingFileW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB4179)
[Address] EAT @explorer.exe (MsiInstallProductA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB197E)
[Address] EAT @explorer.exe (MsiInstallProductW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEACE4B)
[Address] EAT @explorer.exe (MsiInvalidateFeatureCache) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE6D1D3)
[Address] EAT @explorer.exe (MsiIsProductElevatedA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB3306)
[Address] EAT @explorer.exe (MsiIsProductElevatedW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB4A5D)
[Address] EAT @explorer.exe (MsiJoinTransaction) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC3FEB)
[Address] EAT @explorer.exe (MsiLoadStringA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB141F)
[Address] EAT @explorer.exe (MsiLoadStringW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE1AE09)
[Address] EAT @explorer.exe (MsiLocateComponentA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBF19F)
[Address] EAT @explorer.exe (MsiLocateComponentW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBF4CA)
[Address] EAT @explorer.exe (MsiMessageBoxA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB16DA)
[Address] EAT @explorer.exe (MsiMessageBoxExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB1528)
[Address] EAT @explorer.exe (MsiMessageBoxExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEACCB1)
[Address] EAT @explorer.exe (MsiMessageBoxW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEACE24)
[Address] EAT @explorer.exe (MsiNotifySidChangeA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBA306)
[Address] EAT @explorer.exe (MsiNotifySidChangeW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB501B)
[Address] EAT @explorer.exe (MsiOpenDatabaseA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED4691)
[Address] EAT @explorer.exe (MsiOpenDatabaseW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED3D8D)
[Address] EAT @explorer.exe (MsiOpenPackageA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAEDC0)
[Address] EAT @explorer.exe (MsiOpenPackageExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAC63E)
[Address] EAT @explorer.exe (MsiOpenPackageExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAC8E9)
[Address] EAT @explorer.exe (MsiOpenPackageW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAF7AB)
[Address] EAT @explorer.exe (MsiOpenProductA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB8BF2)
[Address] EAT @explorer.exe (MsiOpenProductW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBB857)
[Address] EAT @explorer.exe (MsiPreviewBillboardA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED7D4E)
[Address] EAT @explorer.exe (MsiPreviewBillboardW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED3AEA)
[Address] EAT @explorer.exe (MsiPreviewDialogA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED7D0B)
[Address] EAT @explorer.exe (MsiPreviewDialogW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED3A96)
[Address] EAT @explorer.exe (MsiProcessAdvertiseScriptA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBCBB2)
[Address] EAT @explorer.exe (MsiProcessAdvertiseScriptW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBDF39)
[Address] EAT @explorer.exe (MsiProcessMessage) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED2F51)
[Address] EAT @explorer.exe (MsiProvideAssemblyA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBFD5D)
[Address] EAT @explorer.exe (MsiProvideAssemblyW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC0765)
[Address] EAT @explorer.exe (MsiProvideComponentA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBF7B9)
[Address] EAT @explorer.exe (MsiProvideComponentFromDescriptorA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBFAB3)
[Address] EAT @explorer.exe (MsiProvideComponentFromDescriptorW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE14F84)
[Address] EAT @explorer.exe (MsiProvideComponentW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC030C)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE2C385)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE2D411)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE08A47)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE08C86)
[Address] EAT @explorer.exe (MsiQueryComponentStateA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC687C)
[Address] EAT @explorer.exe (MsiQueryComponentStateW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC1AE1)
[Address] EAT @explorer.exe (MsiQueryFeatureStateA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBF6F1)
[Address] EAT @explorer.exe (MsiQueryFeatureStateExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC6A94)
[Address] EAT @explorer.exe (MsiQueryFeatureStateExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC1CD9)
[Address] EAT @explorer.exe (MsiQueryFeatureStateFromDescriptorA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBFC02)
[Address] EAT @explorer.exe (MsiQueryFeatureStateFromDescriptorW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC057D)
[Address] EAT @explorer.exe (MsiQueryFeatureStateW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE0617D)
[Address] EAT @explorer.exe (MsiQueryProductStateA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBD45D)
[Address] EAT @explorer.exe (MsiQueryProductStateW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE149FE)
[Address] EAT @explorer.exe (MsiRecordClearData) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1D27)
[Address] EAT @explorer.exe (MsiRecordDataSize) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED16E5)
[Address] EAT @explorer.exe (MsiRecordGetFieldCount) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1916)
[Address] EAT @explorer.exe (MsiRecordGetInteger) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED18B5)
[Address] EAT @explorer.exe (MsiRecordGetStringA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED3F1D)
[Address] EAT @explorer.exe (MsiRecordGetStringW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED40CC)
[Address] EAT @explorer.exe (MsiRecordIsNull) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED15F5)
[Address] EAT @explorer.exe (MsiRecordReadStream) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1B6D)
[Address] EAT @explorer.exe (MsiRecordSetInteger) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED17C2)
[Address] EAT @explorer.exe (MsiRecordSetStreamA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED5877)
[Address] EAT @explorer.exe (MsiRecordSetStreamW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1A03)
[Address] EAT @explorer.exe (MsiRecordSetStringA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED561D)
[Address] EAT @explorer.exe (MsiRecordSetStringW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED572E)
[Address] EAT @explorer.exe (MsiReinstallFeatureA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB1EDE)
[Address] EAT @explorer.exe (MsiReinstallFeatureFromDescriptorA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBD8C2)
[Address] EAT @explorer.exe (MsiReinstallFeatureFromDescriptorW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBE657)
[Address] EAT @explorer.exe (MsiReinstallFeatureW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE18C24)
[Address] EAT @explorer.exe (MsiReinstallProductA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB1AFE)
[Address] EAT @explorer.exe (MsiReinstallProductW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEACFF1)
[Address] EAT @explorer.exe (MsiRemovePatchesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC9606)
[Address] EAT @explorer.exe (MsiRemovePatchesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC3702)
[Address] EAT @explorer.exe (MsiSequenceA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED6180)
[Address] EAT @explorer.exe (MsiSequenceW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED2E4B)
[Address] EAT @explorer.exe (MsiSetComponentStateA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED73EB)
[Address] EAT @explorer.exe (MsiSetComponentStateW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED74E5)
[Address] EAT @explorer.exe (MsiSetExternalUIA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAC72F)
[Address] EAT @explorer.exe (MsiSetExternalUIRecord) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC336B)
[Address] EAT @explorer.exe (MsiSetExternalUIW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE14E86)
[Address] EAT @explorer.exe (MsiSetFeatureAttributesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED7001)
[Address] EAT @explorer.exe (MsiSetFeatureAttributesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED70B4)
[Address] EAT @explorer.exe (MsiSetFeatureStateA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED6E2D)
[Address] EAT @explorer.exe (MsiSetFeatureStateW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED6EDF)
[Address] EAT @explorer.exe (MsiSetInstallLevel) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED3424)
[Address] EAT @explorer.exe (MsiSetInternalUI) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE14FE6)
[Address] EAT @explorer.exe (MsiSetMode) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED28BB)
[Address] EAT @explorer.exe (MsiSetOfflineContextW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED8485)
[Address] EAT @explorer.exe (MsiSetPropertyA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED5DC1)
[Address] EAT @explorer.exe (MsiSetPropertyW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED5F85)
[Address] EAT @explorer.exe (MsiSetTargetPathA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED69DD)
[Address] EAT @explorer.exe (MsiSetTargetPathW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED6B61)
[Address] EAT @explorer.exe (MsiSourceListAddMediaDiskA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC7136)
[Address] EAT @explorer.exe (MsiSourceListAddMediaDiskW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC2165)
[Address] EAT @explorer.exe (MsiSourceListAddSourceA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB3037)
[Address] EAT @explorer.exe (MsiSourceListAddSourceExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC6F13)
[Address] EAT @explorer.exe (MsiSourceListAddSourceExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC1F43)
[Address] EAT @explorer.exe (MsiSourceListAddSourceW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEADC51)
[Address] EAT @explorer.exe (MsiSourceListClearAllA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB2EF0)
[Address] EAT @explorer.exe (MsiSourceListClearAllExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC7875)
[Address] EAT @explorer.exe (MsiSourceListClearAllExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC281B)
[Address] EAT @explorer.exe (MsiSourceListClearAllW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEADAEB)
[Address] EAT @explorer.exe (MsiSourceListClearMediaDiskA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC764A)
[Address] EAT @explorer.exe (MsiSourceListClearMediaDiskW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC260D)
[Address] EAT @explorer.exe (MsiSourceListClearSourceA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC7436)
[Address] EAT @explorer.exe (MsiSourceListClearSourceW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC2405)
[Address] EAT @explorer.exe (MsiSourceListEnumMediaDisksA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC834E)
[Address] EAT @explorer.exe (MsiSourceListEnumMediaDisksW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC31B5)
[Address] EAT @explorer.exe (MsiSourceListEnumSourcesA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC7C4B)
[Address] EAT @explorer.exe (MsiSourceListEnumSourcesW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC2C07)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB31B8)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC7A6C)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC2A09)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEADDDB)
[Address] EAT @explorer.exe (MsiSourceListGetInfoA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC7E30)
[Address] EAT @explorer.exe (MsiSourceListGetInfoW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC2DB5)
[Address] EAT @explorer.exe (MsiSourceListSetInfoA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC80F8)
[Address] EAT @explorer.exe (MsiSourceListSetInfoW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC2FAB)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED21B9)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyCount) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1E3D)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED238B)
[Address] EAT @explorer.exe (MsiSummaryInfoPersist) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED2551)
[Address] EAT @explorer.exe (MsiSummaryInfoSetPropertyA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED5906)
[Address] EAT @explorer.exe (MsiSummaryInfoSetPropertyW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED1F2B)
[Address] EAT @explorer.exe (MsiUseFeatureA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC0D83)
[Address] EAT @explorer.exe (MsiUseFeatureExA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEBF9E8)
[Address] EAT @explorer.exe (MsiUseFeatureExW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE14D3A)
[Address] EAT @explorer.exe (MsiUseFeatureW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEC0DA0)
[Address] EAT @explorer.exe (MsiVerifyDiskSpace) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED3863)
[Address] EAT @explorer.exe (MsiVerifyPackageA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEB07AA)
[Address] EAT @explorer.exe (MsiVerifyPackageW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FEAF097)
[Address] EAT @explorer.exe (MsiViewClose) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED0BAF)
[Address] EAT @explorer.exe (MsiViewExecute) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED070F)
[Address] EAT @explorer.exe (MsiViewFetch) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED0833)
[Address] EAT @explorer.exe (MsiViewGetColumnInfo) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED0A91)
[Address] EAT @explorer.exe (MsiViewGetErrorA) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED03F1)
[Address] EAT @explorer.exe (MsiViewGetErrorW) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED05CE)
[Address] EAT @explorer.exe (MsiViewModify) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FED093F)
[Address] EAT @explorer.exe (QueryInstanceCount) : api-ms-win-downlevel-shell32-l1-1-0.dll -> HOOKED (C:\Windows\system32\msi.dll @ 0x6FE12B2A)
[Address] EAT @explorer.exe (DllCanUnloadNow) : msxml3.dll -> HOOKED (C:\Windows\System32\SearchFolder.dll @ 0x6C5029B6)
[Address] EAT @explorer.exe (DllGetClassObject) : msxml3.dll -> HOOKED (C:\Windows\System32\SearchFolder.dll @ 0x6C503E5E)
[Address] EAT @explorer.exe (DllRegisterServer) : msxml3.dll -> HOOKED (C:\Windows\System32\SearchFolder.dll @ 0x6C54A698)
[Address] EAT @explorer.exe (DllUnregisterServer) : msxml3.dll -> HOOKED (C:\Windows\System32\SearchFolder.dll @ 0x6C54A698)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST340014A ATA Device +++++
--- User ---
[MBR] 8a3a2c105645393da1db0bb911fc549a
[BSP] 52765b7747b75dd722dc9ac57506ef31 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 38164 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) WDC WD1600JB-00GVC0 ATA Device +++++
--- User ---
[MBR] 8aa037e442d9d9c21665db00058e0709
[BSP] 0ced2f7ad1ea336f37a2fe695ecf7dff : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 51999 MB
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 106494885 | Size: 100618 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_04102014_200905.txt >>
RKreport[0]_S_04102014_200834.txt

[BAJLA]

20:18:32.0706 2496 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:18:37.0690 2496 ============================================================
20:18:37.0690 2496 Current date / time: 2014/04/10 20:18:37.0690
20:18:37.0690 2496 SystemInfo:
20:18:37.0690 2496
20:18:37.0690 2496 OS Version: 6.1.7601 ServicePack: 1.0
20:18:37.0690 2496 Product type: Workstation
20:18:37.0690 2496 ComputerName: ŽANETA-PC
20:18:37.0690 2496 UserName: Žaneta
20:18:37.0690 2496 Windows directory: C:\Windows
20:18:37.0690 2496 System windows directory: C:\Windows
20:18:37.0690 2496 Processor architecture: Intel x86
20:18:37.0690 2496 Number of processors: 1
20:18:37.0690 2496 Page size: 0x1000
20:18:37.0690 2496 Boot type: Normal boot
20:18:37.0690 2496 ============================================================
20:18:43.0143 2496 Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:18:43.0143 2496 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:18:43.0206 2496 ============================================================
20:18:43.0206 2496 \Device\Harddisk0\DR0:
20:18:43.0206 2496 MBR partitions:
20:18:43.0206 2496 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A8A000
20:18:43.0206 2496 \Device\Harddisk1\DR1:
20:18:43.0206 2496 MBR partitions:
20:18:43.0206 2496 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x658FB66
20:18:43.0221 2496 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x658FBE4, BlocksNum 0xC48501C
20:18:43.0221 2496 ============================================================
20:18:43.0252 2496 C: <-> \Device\Harddisk0\DR0\Partition1
20:18:43.0252 2496 D: <-> \Device\Harddisk1\DR1\Partition1
20:18:43.0252 2496 E: <-> \Device\Harddisk1\DR1\Partition2
20:18:43.0268 2496 ============================================================
20:18:43.0268 2496 Initialize success
20:18:43.0268 2496 ============================================================
20:18:49.0893 2636 ============================================================
20:18:49.0893 2636 Scan started
20:18:49.0893 2636 Mode: Manual;
20:18:49.0893 2636 ============================================================
20:18:51.0487 2636 ================ Scan system memory ========================
20:18:51.0487 2636 System memory - ok
20:18:51.0502 2636 ================ Scan services =============================
20:18:52.0112 2636 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:18:52.0127 2636 1394ohci - ok
20:18:52.0221 2636 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:18:52.0221 2636 ACPI - ok
20:18:52.0284 2636 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:18:52.0299 2636 AcpiPmi - ok
20:18:52.0456 2636 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:18:52.0487 2636 adp94xx - ok
20:18:52.0565 2636 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:18:52.0565 2636 adpahci - ok
20:18:52.0627 2636 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:18:52.0643 2636 adpu320 - ok
20:18:52.0721 2636 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:18:52.0721 2636 AeLookupSvc - ok
20:18:52.0815 2636 [ F81BB7E487EDCEAB630A7EE66CF23913 ] AFD C:\Windows\system32\drivers\afd.sys
20:18:52.0831 2636 AFD - ok
20:18:52.0909 2636 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
20:18:52.0909 2636 agp440 - ok
20:18:52.0971 2636 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:18:52.0987 2636 aic78xx - ok
20:18:53.0643 2636 [ 7997B6F02CBDA0E31FA18CC85871B938 ] ALCXWDM C:\Windows\system32\drivers\RTKVAC.SYS
20:18:53.0706 2636 ALCXWDM - ok
20:18:53.0784 2636 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:18:53.0815 2636 ALG - ok
20:18:53.0862 2636 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
20:18:53.0877 2636 aliide - ok
20:18:53.0924 2636 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:18:53.0940 2636 amdagp - ok
20:18:54.0002 2636 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
20:18:54.0018 2636 amdide - ok
20:18:54.0065 2636 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:18:54.0081 2636 AmdK8 - ok
20:18:54.0143 2636 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:18:54.0143 2636 AmdPPM - ok
20:18:54.0206 2636 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:18:54.0221 2636 amdsata - ok
20:18:54.0299 2636 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:18:54.0331 2636 amdsbs - ok
20:18:54.0377 2636 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:18:54.0393 2636 amdxata - ok
20:18:54.0456 2636 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
20:18:54.0471 2636 AppID - ok
20:18:54.0534 2636 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:18:54.0549 2636 AppIDSvc - ok
20:18:54.0627 2636 [ EACFDF31921F51C097629F1F3C9129B4 ] Appinfo C:\Windows\System32\appinfo.dll
20:18:54.0643 2636 Appinfo - ok
20:18:54.0721 2636 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:18:54.0721 2636 AppMgmt - ok
20:18:54.0799 2636 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:18:54.0815 2636 arc - ok
20:18:54.0862 2636 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:18:54.0877 2636 arcsas - ok
20:18:55.0315 2636 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:18:55.0331 2636 aspnet_state - ok
20:18:55.0377 2636 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:18:55.0393 2636 AsyncMac - ok
20:18:55.0471 2636 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
20:18:55.0471 2636 atapi - ok
20:18:55.0581 2636 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:18:55.0596 2636 AudioEndpointBuilder - ok
20:18:55.0659 2636 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:18:55.0674 2636 Audiosrv - ok
20:18:55.0752 2636 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:18:55.0768 2636 AxInstSV - ok
20:18:55.0862 2636 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:18:55.0893 2636 b06bdrv - ok
20:18:55.0956 2636 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:18:55.0971 2636 b57nd60x - ok
20:18:56.0049 2636 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:18:56.0081 2636 BDESVC - ok
20:18:56.0127 2636 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:18:56.0127 2636 Beep - ok
20:18:56.0268 2636 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
20:18:56.0299 2636 BFE - ok
20:18:56.0393 2636 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
20:18:56.0409 2636 BITS - ok
20:18:56.0471 2636 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:18:56.0487 2636 blbdrive - ok
20:18:56.0549 2636 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:18:56.0549 2636 bowser - ok
20:18:56.0612 2636 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:18:56.0612 2636 BrFiltLo - ok
20:18:56.0674 2636 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:18:56.0674 2636 BrFiltUp - ok
20:18:56.0737 2636 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
20:18:56.0752 2636 Browser - ok
20:18:56.0877 2636 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:18:56.0924 2636 Brserid - ok
20:18:56.0956 2636 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:18:56.0971 2636 BrSerWdm - ok
20:18:57.0002 2636 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:18:57.0018 2636 BrUsbMdm - ok
20:18:57.0065 2636 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:18:57.0065 2636 BrUsbSer - ok
20:18:57.0112 2636 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:18:57.0127 2636 BTHMODEM - ok
20:18:57.0206 2636 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:18:57.0221 2636 bthserv - ok
20:18:57.0284 2636 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:18:57.0299 2636 cdfs - ok
20:18:57.0377 2636 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:18:57.0393 2636 cdrom - ok
20:18:57.0471 2636 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
20:18:57.0471 2636 CertPropSvc - ok
20:18:57.0549 2636 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:18:57.0549 2636 circlass - ok
20:18:57.0612 2636 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:18:57.0627 2636 CLFS - ok
20:18:57.0721 2636 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:18:57.0737 2636 clr_optimization_v2.0.50727_32 - ok
20:18:57.0815 2636 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:18:57.0815 2636 clr_optimization_v4.0.30319_32 - ok
20:18:57.0877 2636 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:18:57.0877 2636 CmBatt - ok
20:18:57.0924 2636 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:18:57.0940 2636 cmdide - ok
20:18:58.0065 2636 [ 85449EEBE8F8EBD6481EFBF0F352B4EB ] CNG C:\Windows\system32\Drivers\cng.sys
20:18:58.0081 2636 CNG - ok
20:18:58.0127 2636 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:18:58.0143 2636 Compbatt - ok
20:18:58.0206 2636 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:18:58.0206 2636 CompositeBus - ok
20:18:58.0252 2636 COMSysApp - ok
20:18:58.0299 2636 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:18:58.0315 2636 crcdisk - ok
20:18:58.0393 2636 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:18:58.0409 2636 CryptSvc - ok
20:18:58.0549 2636 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
20:18:58.0565 2636 CSC - ok
20:18:58.0690 2636 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
20:18:58.0721 2636 CscService - ok
20:18:58.0846 2636 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
20:18:58.0877 2636 DcomLaunch - ok
20:18:58.0956 2636 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:18:58.0971 2636 defragsvc - ok
20:18:59.0049 2636 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:18:59.0065 2636 DfsC - ok
20:18:59.0159 2636 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:18:59.0159 2636 Dhcp - ok
20:18:59.0237 2636 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:18:59.0237 2636 discache - ok
20:18:59.0299 2636 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:18:59.0315 2636 Disk - ok
20:18:59.0440 2636 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:18:59.0440 2636 Dnscache - ok
20:18:59.0502 2636 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
20:18:59.0534 2636 dot3svc - ok
20:18:59.0627 2636 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
20:18:59.0659 2636 DPS - ok
20:18:59.0737 2636 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:18:59.0737 2636 drmkaud - ok
20:18:59.0862 2636 [ 71BC35067CABC02C9453AEAA42B2E43E ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:18:59.0909 2636 DXGKrnl - ok
20:18:59.0987 2636 [ CECB58460674339202F79BA1345D8527 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
20:18:59.0987 2636 eamonm - ok
20:19:00.0049 2636 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:19:00.0065 2636 EapHost - ok
20:19:00.0409 2636 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:19:00.0518 2636 ebdrv - ok
20:19:00.0612 2636 [ 803B370865D907EA21DC0C2B6A8936B5 ] EFS C:\Windows\System32\lsass.exe
20:19:00.0627 2636 EFS - ok
20:19:00.0690 2636 [ C79916F203E1A2CBBE99F22D6E5D21DA ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
20:19:00.0690 2636 ehdrv - ok
20:19:00.0909 2636 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:19:00.0924 2636 ehRecvr - ok
20:19:00.0987 2636 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:19:00.0987 2636 ehSched - ok
20:19:01.0331 2636 [ 4CB575D97653FA91FFB02DA3105EB084 ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
20:19:01.0346 2636 ekrn - ok
20:19:01.0424 2636 [ FD3821285B943648A32ADC39DACC4E11 ] EL90Xbc C:\Windows\system32\DRIVERS\el90Xbc5.SYS
20:19:01.0424 2636 EL90Xbc - ok
20:19:01.0534 2636 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:19:01.0549 2636 elxstor - ok
20:19:01.0643 2636 [ 4B6B2C930CD076F8BDEE683512EE05E8 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
20:19:01.0643 2636 epfw - ok
20:19:01.0690 2636 [ BDC856F11F2A8F4C9B4A59B29A33569B ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
20:19:01.0706 2636 EpfwLWF - ok
20:19:01.0752 2636 [ 6EB4485DDAFCA013D35ED4E158ADE05B ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
20:19:01.0768 2636 epfwwfp - ok
20:19:01.0831 2636 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:19:01.0831 2636 ErrDev - ok
20:19:02.0002 2636 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:19:02.0018 2636 EventSystem - ok
20:19:02.0096 2636 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:19:02.0127 2636 exfat - ok
20:19:02.0190 2636 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:19:02.0206 2636 fastfat - ok
20:19:02.0377 2636 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
20:19:02.0409 2636 Fax - ok
20:19:02.0471 2636 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:19:02.0487 2636 fdc - ok
20:19:02.0534 2636 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:19:02.0534 2636 fdPHost - ok
20:19:02.0596 2636 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:19:02.0596 2636 FDResPub - ok
20:19:02.0643 2636 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:19:02.0643 2636 FileInfo - ok
20:19:02.0706 2636 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:19:02.0721 2636 Filetrace - ok
20:19:02.0768 2636 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:19:02.0768 2636 flpydisk - ok
20:19:02.0846 2636 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:19:02.0862 2636 FltMgr - ok
20:19:03.0002 2636 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\Windows\system32\FntCache.dll
20:19:03.0034 2636 FontCache - ok
20:19:03.0096 2636 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:19:03.0112 2636 FontCache3.0.0.0 - ok
20:19:03.0159 2636 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:19:03.0159 2636 FsDepends - ok
20:19:03.0221 2636 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:19:03.0221 2636 Fs_Rec - ok
20:19:03.0299 2636 [ E306A24D9694C724FA2491278BF50FDB ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:19:03.0315 2636 fvevol - ok
20:19:03.0393 2636 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:19:03.0393 2636 gagp30kx - ok
20:19:03.0502 2636 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
20:19:03.0534 2636 gpsvc - ok
20:19:03.0627 2636 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:19:03.0627 2636 gupdate - ok
20:19:03.0659 2636 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:19:03.0674 2636 gupdatem - ok
20:19:03.0752 2636 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:19:03.0768 2636 hcw85cir - ok
20:19:03.0846 2636 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:19:03.0846 2636 HDAudBus - ok
20:19:03.0940 2636 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:19:03.0956 2636 HidBatt - ok
20:19:04.0018 2636 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:19:04.0034 2636 HidBth - ok
20:19:04.0081 2636 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:19:04.0096 2636 HidIr - ok
20:19:04.0159 2636 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:19:04.0159 2636 hidserv - ok
20:19:04.0237 2636 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:19:04.0252 2636 HidUsb - ok
20:19:04.0315 2636 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:19:04.0315 2636 hkmsvc - ok
20:19:04.0377 2636 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:19:04.0393 2636 HomeGroupListener - ok
20:19:04.0456 2636 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:19:04.0471 2636 HomeGroupProvider - ok
20:19:04.0534 2636 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:19:04.0565 2636 HpSAMD - ok
20:19:04.0659 2636 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:19:04.0690 2636 HTTP - ok
20:19:04.0987 2636 HWiNFO32 - ok
20:19:05.0049 2636 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:19:05.0049 2636 hwpolicy - ok
20:19:05.0112 2636 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:19:05.0127 2636 i8042prt - ok
20:19:05.0268 2636 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:19:05.0315 2636 iaStorV - ok
20:19:05.0565 2636 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:19:05.0627 2636 idsvc - ok
20:19:05.0674 2636 IEEtwCollectorService - ok
20:19:05.0737 2636 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:19:05.0752 2636 iirsp - ok
20:19:05.0831 2636 [ B9C54120F46392100478F58F374E5709 ] IKEEXT C:\Windows\System32\ikeext.dll
20:19:05.0893 2636 IKEEXT - ok
20:19:05.0971 2636 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
20:19:05.0971 2636 intelide - ok
20:19:06.0049 2636 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:19:06.0049 2636 intelppm - ok
20:19:06.0127 2636 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:19:06.0127 2636 IPBusEnum - ok
20:19:06.0174 2636 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:19:06.0174 2636 IpFilterDriver - ok
20:19:06.0268 2636 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:19:06.0299 2636 iphlpsvc - ok
20:19:06.0346 2636 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:19:06.0377 2636 IPMIDRV - ok
20:19:06.0440 2636 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:19:06.0440 2636 IPNAT - ok
20:19:06.0502 2636 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:19:06.0502 2636 IRENUM - ok
20:19:06.0565 2636 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:19:06.0565 2636 isapnp - ok
20:19:06.0643 2636 [ EB34CE31FABD4DC4343FD2AD16D2CAF9 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:19:06.0659 2636 iScsiPrt - ok
20:19:06.0721 2636 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:19:06.0721 2636 kbdclass - ok
20:19:06.0799 2636 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:19:06.0799 2636 kbdhid - ok
20:19:06.0831 2636 [ 803B370865D907EA21DC0C2B6A8936B5 ] KeyIso C:\Windows\system32\lsass.exe
20:19:06.0846 2636 KeyIso - ok
20:19:06.0909 2636 [ F286830298323272260332D6ABC905C1 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:19:06.0924 2636 KSecDD - ok
20:19:06.0971 2636 [ D7C760D57B1656DD748B9E4AB6CB5A51 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:19:06.0987 2636 KSecPkg - ok
20:19:07.0049 2636 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:19:07.0065 2636 KtmRm - ok
20:19:07.0127 2636 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
20:19:07.0143 2636 LanmanServer - ok
20:19:07.0237 2636 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:19:07.0252 2636 LanmanWorkstation - ok
20:19:07.0331 2636 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:19:07.0346 2636 lltdio - ok
20:19:07.0409 2636 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:19:07.0440 2636 lltdsvc - ok
20:19:07.0471 2636 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:19:07.0487 2636 lmhosts - ok
20:19:07.0565 2636 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:19:07.0581 2636 LSI_FC - ok
20:19:07.0643 2636 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:19:07.0659 2636 LSI_SAS - ok
20:19:07.0706 2636 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:19:07.0721 2636 LSI_SAS2 - ok
20:19:07.0784 2636 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:19:07.0799 2636 LSI_SCSI - ok
20:19:07.0862 2636 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:19:07.0862 2636 luafv - ok
20:19:07.0956 2636 [ 661B911FA04E73FB073FF9B1C9BD2E05 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
20:19:07.0956 2636 MBAMSwissArmy - ok
20:19:08.0034 2636 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:19:08.0065 2636 Mcx2Svc - ok
20:19:08.0127 2636 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:19:08.0127 2636 megasas - ok
20:19:08.0174 2636 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:19:08.0221 2636 MegaSR - ok
20:19:08.0284 2636 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:19:08.0299 2636 MMCSS - ok
20:19:08.0362 2636 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:19:08.0362 2636 Modem - ok
20:19:08.0424 2636 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:19:08.0424 2636 monitor - ok
20:19:08.0502 2636 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:19:08.0502 2636 mouclass - ok
20:19:08.0565 2636 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:19:08.0565 2636 mouhid - ok
20:19:08.0627 2636 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:19:08.0627 2636 mountmgr - ok
20:19:08.0690 2636 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
20:19:08.0721 2636 mpio - ok
20:19:08.0784 2636 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:19:08.0784 2636 mpsdrv - ok
20:19:08.0877 2636 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:19:08.0909 2636 MpsSvc - ok
20:19:08.0971 2636 [ 21F4B24ACFC79A483515BD986DD9043F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:19:08.0987 2636 MRxDAV - ok
20:19:09.0049 2636 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:19:09.0065 2636 mrxsmb - ok
20:19:09.0112 2636 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:19:09.0127 2636 mrxsmb10 - ok
20:19:09.0206 2636 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:19:09.0206 2636 mrxsmb20 - ok
20:19:09.0284 2636 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
20:19:09.0299 2636 msahci - ok
20:19:09.0346 2636 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:19:09.0362 2636 msdsm - ok
20:19:09.0409 2636 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:19:09.0424 2636 MSDTC - ok
20:19:09.0518 2636 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:19:09.0518 2636 Msfs - ok
20:19:09.0596 2636 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:19:09.0596 2636 mshidkmdf - ok
20:19:09.0643 2636 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:19:09.0659 2636 msisadrv - ok
20:19:09.0721 2636 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:19:09.0721 2636 MSiSCSI - ok
20:19:09.0752 2636 msiserver - ok
20:19:09.0831 2636 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:19:09.0846 2636 MSKSSRV - ok
20:19:09.0893 2636 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:19:09.0909 2636 MSPCLOCK - ok
20:19:09.0956 2636 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:19:09.0956 2636 MSPQM - ok
20:19:10.0049 2636 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:19:10.0065 2636 MsRPC - ok
20:19:10.0143 2636 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:19:10.0159 2636 mssmbios - ok
20:19:10.0221 2636 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:19:10.0237 2636 MSTEE - ok
20:19:10.0284 2636 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:19:10.0284 2636 MTConfig - ok
20:19:10.0331 2636 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:19:10.0331 2636 Mup - ok
20:19:10.0456 2636 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
20:19:10.0487 2636 napagent - ok
20:19:10.0565 2636 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:19:10.0581 2636 NativeWifiP - ok
20:19:10.0737 2636 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:19:10.0768 2636 NDIS - ok
20:19:10.0846 2636 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:19:10.0862 2636 NdisCap - ok
20:19:10.0924 2636 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:19:10.0940 2636 NdisTapi - ok
20:19:11.0018 2636 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:19:11.0049 2636 Ndisuio - ok
20:19:11.0112 2636 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:19:11.0127 2636 NdisWan - ok
20:19:11.0206 2636 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:19:11.0206 2636 NDProxy - ok
20:19:11.0284 2636 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:19:11.0315 2636 NetBIOS - ok
20:19:11.0393 2636 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:19:11.0393 2636 NetBT - ok
20:19:11.0440 2636 [ 803B370865D907EA21DC0C2B6A8936B5 ] Netlogon C:\Windows\system32\lsass.exe
20:19:11.0456 2636 Netlogon - ok
20:19:11.0581 2636 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:19:11.0596 2636 Netman - ok
20:19:11.0706 2636 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:19:11.0706 2636 NetMsmqActivator - ok
20:19:11.0768 2636 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:19:11.0768 2636 NetPipeActivator - ok
20:19:11.0846 2636 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:19:11.0893 2636 netprofm - ok
20:19:11.0956 2636 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:19:11.0956 2636 NetTcpActivator - ok
20:19:12.0018 2636 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:19:12.0018 2636 NetTcpPortSharing - ok
20:19:12.0081 2636 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:19:12.0096 2636 nfrd960 - ok

[BAJLA]

20:19:12.0159 2636 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
20:19:12.0174 2636 NlaSvc - ok
20:19:12.0221 2636 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:19:12.0237 2636 Npfs - ok
20:19:12.0284 2636 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:19:12.0299 2636 nsi - ok
20:19:12.0346 2636 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:19:12.0362 2636 nsiproxy - ok
20:19:12.0674 2636 [ C8DFF8D07755A66C7A4A738930F0FEAC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:19:12.0721 2636 Ntfs - ok
20:19:12.0815 2636 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:19:12.0831 2636 Null - ok
20:19:12.0909 2636 [ 380C36D4BD68C0B63074D1BF230CE503 ] nvmpu401 C:\Windows\system32\drivers\nvmpu401.sys
20:19:12.0909 2636 nvmpu401 - ok
20:19:12.0971 2636 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:19:12.0987 2636 nvraid - ok
20:19:13.0081 2636 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:19:13.0096 2636 nvstor - ok
20:19:13.0143 2636 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:19:13.0159 2636 nv_agp - ok
20:19:13.0221 2636 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:19:13.0221 2636 ohci1394 - ok
20:19:13.0331 2636 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:19:13.0362 2636 p2pimsvc - ok
20:19:13.0471 2636 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:19:13.0502 2636 p2psvc - ok
20:19:13.0581 2636 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:19:13.0596 2636 Parport - ok
20:19:13.0643 2636 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:19:13.0659 2636 partmgr - ok
20:19:13.0706 2636 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:19:13.0706 2636 Parvdm - ok
20:19:13.0768 2636 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:19:13.0784 2636 PcaSvc - ok
20:19:13.0846 2636 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
20:19:13.0862 2636 pci - ok
20:19:13.0924 2636 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
20:19:13.0940 2636 pciide - ok
20:19:14.0002 2636 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:19:14.0018 2636 pcmcia - ok
20:19:14.0065 2636 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:19:14.0065 2636 pcw - ok
20:19:14.0252 2636 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:19:14.0284 2636 PEAUTH - ok
20:19:14.0393 2636 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:19:14.0440 2636 PeerDistSvc - ok
20:19:14.0815 2636 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
20:19:14.0877 2636 pla - ok
20:19:14.0987 2636 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:19:15.0002 2636 PlugPlay - ok
20:19:15.0065 2636 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:19:15.0065 2636 PNRPAutoReg - ok
20:19:15.0159 2636 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:19:15.0174 2636 PNRPsvc - ok
20:19:15.0284 2636 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:19:15.0299 2636 PolicyAgent - ok
20:19:15.0393 2636 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
20:19:15.0409 2636 Power - ok
20:19:15.0471 2636 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:19:15.0471 2636 PptpMiniport - ok
20:19:15.0518 2636 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:19:15.0534 2636 Processor - ok
20:19:15.0612 2636 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
20:19:15.0643 2636 ProfSvc - ok
20:19:15.0690 2636 [ 803B370865D907EA21DC0C2B6A8936B5 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:19:15.0690 2636 ProtectedStorage - ok
20:19:15.0752 2636 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:19:15.0768 2636 Psched - ok
20:19:15.0877 2636 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:19:15.0987 2636 ql2300 - ok
20:19:16.0034 2636 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:19:16.0049 2636 ql40xx - ok
20:19:16.0112 2636 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:19:16.0127 2636 QWAVE - ok
20:19:16.0174 2636 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:19:16.0174 2636 QWAVEdrv - ok
20:19:16.0237 2636 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:19:16.0237 2636 RasAcd - ok
20:19:16.0299 2636 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:19:16.0299 2636 RasAgileVpn - ok
20:19:16.0362 2636 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:19:16.0377 2636 RasAuto - ok
20:19:16.0440 2636 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:19:16.0440 2636 Rasl2tp - ok
20:19:16.0565 2636 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
20:19:16.0581 2636 RasMan - ok
20:19:16.0627 2636 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:19:16.0643 2636 RasPppoe - ok
20:19:16.0706 2636 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:19:16.0721 2636 RasSstp - ok
20:19:16.0799 2636 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:19:16.0815 2636 rdbss - ok
20:19:16.0877 2636 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:19:16.0893 2636 rdpbus - ok
20:19:16.0956 2636 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:19:16.0971 2636 RDPCDD - ok
20:19:17.0049 2636 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:19:17.0065 2636 RDPDR - ok
20:19:17.0127 2636 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:19:17.0127 2636 RDPENCDD - ok
20:19:17.0206 2636 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:19:17.0206 2636 RDPREFMP - ok
20:19:17.0284 2636 [ 65375DF758CA1872AB7EBBBA457FD5E6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:19:17.0284 2636 RdpVideoMiniport - ok
20:19:17.0377 2636 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:19:17.0393 2636 RDPWD - ok
20:19:17.0502 2636 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:19:17.0518 2636 rdyboost - ok
20:19:17.0581 2636 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:19:17.0581 2636 RemoteAccess - ok
20:19:17.0643 2636 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:19:17.0643 2636 RemoteRegistry - ok
20:19:17.0706 2636 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:19:17.0721 2636 RpcEptMapper - ok
20:19:17.0784 2636 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:19:17.0784 2636 RpcLocator - ok
20:19:17.0846 2636 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
20:19:17.0862 2636 RpcSs - ok
20:19:17.0940 2636 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:19:17.0987 2636 rspndr - ok
20:19:18.0034 2636 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:19:18.0034 2636 s3cap - ok
20:19:18.0096 2636 [ 803B370865D907EA21DC0C2B6A8936B5 ] SamSs C:\Windows\system32\lsass.exe
20:19:18.0096 2636 SamSs - ok
20:19:18.0159 2636 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:19:18.0190 2636 sbp2port - ok
20:19:18.0237 2636 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:19:18.0252 2636 SCardSvr - ok
20:19:18.0315 2636 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:19:18.0315 2636 scfilter - ok
20:19:18.0393 2636 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
20:19:18.0440 2636 Schedule - ok
20:19:18.0487 2636 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:19:18.0487 2636 SCPolicySvc - ok
20:19:18.0565 2636 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:19:18.0581 2636 SDRSVC - ok
20:19:18.0643 2636 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:19:18.0643 2636 secdrv - ok
20:19:18.0706 2636 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:19:18.0721 2636 seclogon - ok
20:19:18.0768 2636 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:19:18.0784 2636 SENS - ok
20:19:18.0846 2636 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:19:18.0862 2636 SensrSvc - ok
20:19:18.0909 2636 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:19:18.0909 2636 Serenum - ok
20:19:18.0987 2636 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:19:18.0987 2636 Serial - ok
20:19:19.0034 2636 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:19:19.0034 2636 sermouse - ok
20:19:19.0159 2636 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
20:19:19.0174 2636 SessionEnv - ok
20:19:19.0237 2636 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:19:19.0252 2636 sffdisk - ok
20:19:19.0299 2636 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:19:19.0299 2636 sffp_mmc - ok
20:19:19.0346 2636 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:19:19.0362 2636 sffp_sd - ok
20:19:19.0424 2636 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:19:19.0424 2636 sfloppy - ok
20:19:19.0518 2636 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:19:19.0534 2636 SharedAccess - ok
20:19:19.0674 2636 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:19:19.0690 2636 ShellHWDetection - ok
20:19:19.0768 2636 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:19:19.0784 2636 sisagp - ok
20:19:19.0862 2636 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:19:19.0877 2636 SiSRaid2 - ok
20:19:19.0940 2636 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:19:19.0956 2636 SiSRaid4 - ok
20:19:20.0018 2636 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:19:20.0049 2636 Smb - ok
20:19:20.0143 2636 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:19:20.0159 2636 SNMPTRAP - ok
20:19:20.0221 2636 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:19:20.0221 2636 spldr - ok
20:19:20.0299 2636 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
20:19:20.0315 2636 Spooler - ok
20:19:20.0752 2636 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
20:19:20.0877 2636 sppsvc - ok
20:19:20.0956 2636 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:19:20.0971 2636 sppuinotify - ok
20:19:21.0049 2636 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:19:21.0065 2636 srv - ok
20:19:21.0127 2636 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:19:21.0143 2636 srv2 - ok
20:19:21.0221 2636 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:19:21.0237 2636 srvnet - ok
20:19:21.0299 2636 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:19:21.0315 2636 SSDPSRV - ok
20:19:21.0346 2636 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:19:21.0362 2636 SstpSvc - ok
20:19:21.0424 2636 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:19:21.0440 2636 stexstor - ok
20:19:21.0518 2636 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
20:19:21.0549 2636 StiSvc - ok
20:19:21.0612 2636 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:19:21.0612 2636 storflt - ok
20:19:21.0674 2636 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:19:21.0690 2636 storvsc - ok
20:19:21.0752 2636 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
20:19:21.0768 2636 swenum - ok
20:19:21.0831 2636 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:19:21.0846 2636 swprv - ok
20:19:21.0893 2636 Synth3dVsc - ok
20:19:22.0065 2636 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
20:19:22.0127 2636 SysMain - ok
20:19:22.0190 2636 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:19:22.0206 2636 TabletInputService - ok
20:19:22.0284 2636 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
20:19:22.0299 2636 TapiSrv - ok
20:19:22.0362 2636 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:19:22.0377 2636 TBS - ok
20:19:22.0612 2636 [ CA59F7C570AF70BC174F477CFE2D9EE3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:19:22.0674 2636 Tcpip - ok
20:19:22.0799 2636 [ CA59F7C570AF70BC174F477CFE2D9EE3 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:19:22.0815 2636 TCPIP6 - ok
20:19:22.0893 2636 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:19:22.0893 2636 tcpipreg - ok
20:19:23.0018 2636 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:19:23.0018 2636 TDPIPE - ok
20:19:23.0096 2636 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:19:23.0096 2636 TDTCP - ok
20:19:23.0159 2636 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:19:23.0174 2636 tdx - ok
20:19:23.0221 2636 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:19:23.0221 2636 TermDD - ok
20:19:23.0362 2636 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
20:19:23.0393 2636 TermService - ok
20:19:23.0440 2636 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:19:23.0456 2636 Themes - ok
20:19:23.0502 2636 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:19:23.0502 2636 THREADORDER - ok
20:19:23.0596 2636 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:19:23.0612 2636 TrkWks - ok
20:19:23.0706 2636 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:19:23.0706 2636 TrustedInstaller - ok
20:19:23.0799 2636 [ B37B08F2E5EEB1A37E448E09BACE1101 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:19:23.0799 2636 tssecsrv - ok
20:19:23.0893 2636 [ C6A5FBD4977305E1FA23E02C042DB463 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:19:23.0893 2636 TsUsbFlt - ok
20:19:23.0940 2636 tsusbhub - ok
20:19:24.0018 2636 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:19:24.0034 2636 tunnel - ok
20:19:24.0096 2636 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:19:24.0112 2636 uagp35 - ok
20:19:24.0174 2636 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:19:24.0206 2636 udfs - ok
20:19:24.0299 2636 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:19:24.0315 2636 UI0Detect - ok
20:19:24.0377 2636 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:19:24.0393 2636 uliagpkx - ok
20:19:24.0471 2636 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
20:19:24.0471 2636 umbus - ok
20:19:24.0534 2636 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:19:24.0549 2636 UmPass - ok
20:19:24.0659 2636 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
20:19:24.0674 2636 UmRdpService - ok
20:19:24.0752 2636 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:19:24.0768 2636 upnphost - ok
20:19:24.0831 2636 [ 0803FBA9FE829D61AE26EC0BCC910C46 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
20:19:24.0846 2636 usbccgp - ok
20:19:24.0924 2636 [ 2352AB5F9F8F097BF9D41D5A4718A041 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:19:24.0940 2636 usbcir - ok
20:19:24.0987 2636 [ D40855F89B69305140BBD7E9A3BA2DA6 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:19:24.0987 2636 usbehci - ok
20:19:25.0065 2636 [ EDF2DF71C4F1E13A6AC75F5224DE655A ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:19:25.0081 2636 usbhub - ok
20:19:25.0127 2636 [ 9828C8D14CC2676421778F0DE638CF97 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:19:25.0143 2636 usbohci - ok
20:19:25.0190 2636 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:19:25.0206 2636 usbprint - ok
20:19:25.0252 2636 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
20:19:25.0252 2636 USBSTOR - ok
20:19:25.0331 2636 [ 800AABFD625EEFF899F7E5496BDE37AB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:19:25.0331 2636 usbuhci - ok
20:19:25.0393 2636 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:19:25.0409 2636 UxSms - ok
20:19:25.0440 2636 [ 803B370865D907EA21DC0C2B6A8936B5 ] VaultSvc C:\Windows\system32\lsass.exe
20:19:25.0456 2636 VaultSvc - ok
20:19:25.0518 2636 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:19:25.0518 2636 vdrvroot - ok
20:19:25.0612 2636 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
20:19:25.0643 2636 vds - ok
20:19:25.0721 2636 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:19:25.0737 2636 vga - ok
20:19:25.0784 2636 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:19:25.0799 2636 VgaSave - ok
20:19:25.0831 2636 VGPU - ok
20:19:25.0909 2636 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:19:25.0909 2636 vhdmp - ok
20:19:25.0971 2636 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:19:25.0971 2636 viaagp - ok
20:19:26.0034 2636 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:19:26.0049 2636 ViaC7 - ok
20:19:26.0112 2636 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
20:19:26.0127 2636 viaide - ok
20:19:26.0190 2636 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:19:26.0190 2636 vmbus - ok
20:19:26.0252 2636 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:19:26.0252 2636 VMBusHID - ok
20:19:26.0331 2636 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:19:26.0331 2636 volmgr - ok
20:19:26.0471 2636 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:19:26.0518 2636 volmgrx - ok
20:19:26.0612 2636 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:19:26.0627 2636 volsnap - ok
20:19:26.0737 2636 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:19:26.0768 2636 vsmraid - ok
20:19:26.0987 2636 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
20:19:27.0034 2636 VSS - ok
20:19:27.0081 2636 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:19:27.0081 2636 vwifibus - ok
20:19:27.0143 2636 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:19:27.0174 2636 W32Time - ok
20:19:27.0252 2636 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:19:27.0268 2636 WacomPen - ok
20:19:27.0346 2636 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:19:27.0346 2636 WANARP - ok
20:19:27.0377 2636 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:19:27.0393 2636 Wanarpv6 - ok
20:19:27.0799 2636 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:19:27.0877 2636 WatAdminSvc - ok
20:19:28.0127 2636 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
20:19:28.0190 2636 wbengine - ok
20:19:28.0252 2636 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:19:28.0268 2636 WbioSrvc - ok
20:19:28.0346 2636 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:19:28.0377 2636 wcncsvc - ok
20:19:28.0424 2636 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:19:28.0440 2636 WcsPlugInService - ok
20:19:28.0502 2636 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:19:28.0518 2636 Wd - ok
20:19:28.0581 2636 [ 25944D2CC49E0A6C581D02A74B7D6645 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:19:28.0612 2636 Wdf01000 - ok
20:19:28.0659 2636 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:19:28.0674 2636 WdiServiceHost - ok
20:19:28.0706 2636 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:19:28.0752 2636 WdiSystemHost - ok
20:19:28.0893 2636 [ 75E8EBD7040CE238684333F97014762A ] WebClient C:\Windows\System32\webclnt.dll
20:19:28.0940 2636 WebClient - ok
20:19:29.0049 2636 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:19:29.0112 2636 Wecsvc - ok
20:19:29.0174 2636 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:19:29.0190 2636 wercplsupport - ok
20:19:29.0252 2636 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:19:29.0299 2636 WerSvc - ok
20:19:29.0346 2636 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:19:29.0346 2636 WfpLwf - ok
20:19:29.0393 2636 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:19:29.0409 2636 WIMMount - ok
20:19:29.0706 2636 [ 082CF481F659FAE0DE51AD060881EB47 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:19:29.0737 2636 WinDefend - ok
20:19:29.0815 2636 WinHttpAutoProxySvc - ok
20:19:29.0924 2636 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:19:29.0940 2636 Winmgmt - ok
20:19:30.0034 2636 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
20:19:30.0096 2636 WinRM - ok
20:19:30.0331 2636 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:19:30.0377 2636 Wlansvc - ok
20:19:30.0440 2636 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:19:30.0456 2636 WmiAcpi - ok
20:19:30.0534 2636 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:19:30.0534 2636 wmiApSrv - ok
20:19:30.0815 2636 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:19:30.0862 2636 WMPNetworkSvc - ok
20:19:30.0909 2636 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:19:30.0924 2636 WPCSvc - ok
20:19:31.0002 2636 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:19:31.0018 2636 WPDBusEnum - ok
20:19:31.0065 2636 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:19:31.0081 2636 ws2ifsl - ok
20:19:31.0127 2636 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
20:19:31.0143 2636 wscsvc - ok
20:19:31.0174 2636 WSearch - ok
20:19:31.0565 2636 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
20:19:31.0643 2636 wuauserv - ok
20:19:31.0690 2636 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:19:31.0721 2636 WudfPf - ok
20:19:31.0784 2636 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:19:31.0799 2636 WUDFRd - ok
20:19:31.0862 2636 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:19:31.0877 2636 wudfsvc - ok
20:19:31.0940 2636 [ 7CC38741B8F68F1E0D5D79DA6123666A ] WwanSvc C:\Windows\System32\wwansvc.dll
20:19:31.0956 2636 WwanSvc - ok
20:19:32.0018 2636 ================ Scan global ===============================
20:19:32.0081 2636 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
20:19:32.0143 2636 [ 51BB04243DF6196C06E125898127E397 ] C:\Windows\system32\winsrv.dll
20:19:32.0190 2636 [ 51BB04243DF6196C06E125898127E397 ] C:\Windows\system32\winsrv.dll
20:19:32.0252 2636 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:19:32.0315 2636 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:19:32.0331 2636 [Global] - ok
20:19:32.0346 2636 ================ Scan MBR ==================================
20:19:32.0377 2636 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:19:32.0893 2636 \Device\Harddisk0\DR0 - ok
20:19:32.0940 2636 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:19:33.0034 2636 \Device\Harddisk1\DR1 - ok
20:19:33.0049 2636 ================ Scan VBR ==================================
20:19:33.0096 2636 [ F1AFEC336907D917B3BDBA84B1FC8C35 ] \Device\Harddisk0\DR0\Partition1
20:19:33.0112 2636 \Device\Harddisk0\DR0\Partition1 - ok
20:19:33.0143 2636 [ 5C89720F7EEAFB5719C56F5ED145E0BD ] \Device\Harddisk1\DR1\Partition1
20:19:33.0143 2636 \Device\Harddisk1\DR1\Partition1 - ok
20:19:33.0190 2636 [ D0AD9D843949C72E94F2B6FECAD4BAFE ] \Device\Harddisk1\DR1\Partition2
20:19:33.0190 2636 \Device\Harddisk1\DR1\Partition2 - ok
20:19:33.0206 2636 ============================================================
20:19:33.0206 2636 Scan finished
20:19:33.0206 2636 ============================================================
20:19:33.0237 2640 Detected object count: 0
20:19:33.0252 2640 Actual detected object count: 0