Prosím o kontrolu logu. Vyřešeno

[mmmartin]

V souvislosti s řešením tohoto problému prosím o kontrolu. Připojuji tři logy, požadované v prvním kroku.

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 13:53:53, on 6.4.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16843)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe
C:\Program Files (x86)\HiJackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [PowerDVD13Agent] "C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFDTV\WFWIZ.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKCU\..\Run: [TeamViewer 8] C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: GIGABYTE OC_GURU.lnk = C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: @oem75.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9075 bytes

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Malwarebytes Anti-Malware
http://www.malwarebytes.org

Scan Date: 6.4.2014
Scan Time: 14:26:56
Logfile: Malwarebytes.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.06.04
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 8
CPU: x64
File System: NTFS
User: martin

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 324663
Time Elapsed: 8 min, 48 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

# AdwCleaner v3.023 - Report created 06/04/2014 at 14:29:55
# Updated 01/04/2014 by Xplode
# Operating System : Windows 8 Pro (64 bits)
# Username : martin - MARTIN-PC
# Running from : C:\Users\martin\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\Users\martin\AppData\Roaming\DriverCure
Folder Found C:\Users\martin\AppData\Roaming\ParetoLogic
Folder Found C:\Users\martin\AppData\Roaming\pdfforge

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\ParetoLogic
Key Found : [x64] HKCU\Software\ParetoLogic
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\Software\ParetoLogic
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16843


*************************

AdwCleaner[R2].txt - [1613 octets] - [06/04/2014 14:29:55]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1673 octets] ##########

[Reklama]

[Orcus]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Smazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

====================================================

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

====================================================

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[mmmartin]

# AdwCleaner v3.023 - Report created 06/04/2014 at 19:53:09
# Updated 01/04/2014 by Xplode
# Operating System : Windows 8 Pro (64 bits)
# Username : martin - MARTIN-PC
# Running from : C:\Users\martin\Desktop\Nová složka\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\martin\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\martin\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\martin\AppData\Roaming\pdfforge

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKLM\Software\ParetoLogic

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16843


*************************

AdwCleaner[R2].txt - [1765 octets] - [06/04/2014 14:29:55]
AdwCleaner[R3].txt - [1837 octets] - [06/04/2014 19:52:18]
AdwCleaner[S1].txt - [1743 octets] - [06/04/2014 19:53:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1803 octets] ##########

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 Pro x64
Ran by martin on ne 06.04.2014 at 20:04:25,13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 06.04.2014 at 20:11:19,37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx


pokračuje

[mmmartin]

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8 (6.2.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : martin [Práva správce]
Mód : Kontrola -- Datum : 04/06/2014 20:23:20
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
[Address] EAT @explorer.exe (BiChangeApplicationStateForPackageName) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932EAB80)
[Address] EAT @explorer.exe (BiChangeSessionState) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x933053D8)
[Address] EAT @explorer.exe (BiNotifyNewSession) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x93306F0C)
[Address] EAT @explorer.exe (BiPtActivateWorkItem) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BCE0)
[Address] EAT @explorer.exe (BiPtAssociateActivationProxy) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9330A7EC)
[Address] EAT @explorer.exe (BiPtAssociateApplicationExtensionClass) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BBD0)
[Address] EAT @explorer.exe (BiPtCreateEventForPackageName) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BAC0)
[Address] EAT @explorer.exe (BiPtDeleteEvent) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BA50)
[Address] EAT @explorer.exe (BiPtDisassociateWorkItem) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B9B0)
[Address] EAT @explorer.exe (BiPtEnumerateBrokeredEvents) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x93306A70)
[Address] EAT @explorer.exe (BiPtEnumerateWorkItemsForPackageName) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B8C0)
[Address] EAT @explorer.exe (BiPtFreeMemory) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E5FE0)
[Address] EAT @explorer.exe (BiPtQueryBrokeredEvent) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E5DF0)
[Address] EAT @explorer.exe (BiPtQuerySystemStateBroadcastChannels) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x93306A0C)
[Address] EAT @explorer.exe (BiPtQueryWorkItem) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B804)
[Address] EAT @explorer.exe (BiPtSignalEvent) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B738)
[Address] EAT @explorer.exe (BiPtSignalMultipleEvents) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B660)
[Address] EAT @explorer.exe (BiResetActiveSessionForPackage) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B57C)
[Address] EAT @explorer.exe (BiSetActiveSessionForPackage) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B4E0)
[Address] EAT @explorer.exe (BiUpdateLockScreenApplications) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B430)
[Address] EAT @explorer.exe (DllCanUnloadNow) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E1340)
[Address] EAT @explorer.exe (DllGetActivationFactory) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E2F60)
[Address] EAT @explorer.exe (DllGetClassObject) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E2110)
[Address] EAT @explorer.exe (PsmBlockAppStateChangeCompletion) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BDD4)
[Address] EAT @explorer.exe (PsmIsProcessInApplication) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932F7D60)
[Address] EAT @explorer.exe (PsmQueryApplicationInformation) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E73F0)
[Address] EAT @explorer.exe (PsmQueryApplicationList) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E2770)
[Address] EAT @explorer.exe (PsmQueryCurrentAppState) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BD70)
[Address] EAT @explorer.exe (PsmQueryProcessList) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E24F0)
[Address] EAT @explorer.exe (PsmRegisterAppStateChangeNotification) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932ECF00)
[Address] EAT @explorer.exe (PsmRegisterApplicationNotification) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E71E0)
[Address] EAT @explorer.exe (PsmSetApplicationState) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932EA870)
[Address] EAT @explorer.exe (PsmShutdownApplication) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BEC0)
[Address] EAT @explorer.exe (PsmUnblockAppStateChangeCompletion) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BE0C)
[Address] EAT @explorer.exe (PsmUnregisterAppStateChangeNotification) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932F0A68)
[Address] EAT @explorer.exe (PsmWaitForAppResume) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BE5C)
[Address] EAT @explorer.exe (DllCanUnloadNow) : btwleapi.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0x93391010)
[Address] EAT @explorer.exe (DllGetClassObject) : btwleapi.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0x93392B90)
[Address] EAT @explorer.exe (DllRegisterServer) : btwleapi.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0x9353BAC4)
[Address] EAT @explorer.exe (DllUnregisterServer) : btwleapi.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0x9353BAA0)
[Address] EAT @explorer.exe (GetProxyDllInfo) : btwleapi.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0x9353BAEC)
[Address] EAT @explorer.exe (GdipAddPathArc) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACC868)
[Address] EAT @explorer.exe (GdipAddPathArcI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACC7C8)
[Address] EAT @explorer.exe (GdipAddPathBezier) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF400)
[Address] EAT @explorer.exe (GdipAddPathBezierI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF31C)
[Address] EAT @explorer.exe (GdipAddPathBeziers) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF258)
[Address] EAT @explorer.exe (GdipAddPathBeziersI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF174)
[Address] EAT @explorer.exe (GdipAddPathClosedCurve) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFEAC4)
[Address] EAT @explorer.exe (GdipAddPathClosedCurve2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE90C)
[Address] EAT @explorer.exe (GdipAddPathClosedCurve2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE824)
[Address] EAT @explorer.exe (GdipAddPathClosedCurveI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE9E0)
[Address] EAT @explorer.exe (GdipAddPathCurve) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF094)
[Address] EAT @explorer.exe (GdipAddPathCurve2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFEE94)
[Address] EAT @explorer.exe (GdipAddPathCurve2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFED74)
[Address] EAT @explorer.exe (GdipAddPathCurve3) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFEC90)
[Address] EAT @explorer.exe (GdipAddPathCurve3I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFEB90)
[Address] EAT @explorer.exe (GdipAddPathCurveI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFEF78)
[Address] EAT @explorer.exe (GdipAddPathEllipse) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE3FC)
[Address] EAT @explorer.exe (GdipAddPathEllipseI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE378)
[Address] EAT @explorer.exe (GdipAddPathLine) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACB964)
[Address] EAT @explorer.exe (GdipAddPathLine2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF61C)
[Address] EAT @explorer.exe (GdipAddPathLine2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF538)
[Address] EAT @explorer.exe (GdipAddPathLineI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACB8E0)
[Address] EAT @explorer.exe (GdipAddPathPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFDF7C)
[Address] EAT @explorer.exe (GdipAddPathPie) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE280)
[Address] EAT @explorer.exe (GdipAddPathPieI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE1E0)
[Address] EAT @explorer.exe (GdipAddPathPolygon) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE11C)
[Address] EAT @explorer.exe (GdipAddPathPolygonI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE038)
[Address] EAT @explorer.exe (GdipAddPathRectangle) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE730)
[Address] EAT @explorer.exe (GdipAddPathRectangleI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE6AC)
[Address] EAT @explorer.exe (GdipAddPathRectangles) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE5E8)
[Address] EAT @explorer.exe (GdipAddPathRectanglesI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFE4E8)
[Address] EAT @explorer.exe (GdipAddPathString) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFDDBC)
[Address] EAT @explorer.exe (GdipAddPathStringI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFDCD4)
[Address] EAT @explorer.exe (GdipAlloc) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A89ADC)
[Address] EAT @explorer.exe (GdipBeginContainer) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB1C4)
[Address] EAT @explorer.exe (GdipBeginContainer2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB100)
[Address] EAT @explorer.exe (GdipBeginContainerI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB000)
[Address] EAT @explorer.exe (GdipBitmapApplyEffect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2874)
[Address] EAT @explorer.exe (GdipBitmapConvertFormat) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2B20)
[Address] EAT @explorer.exe (GdipBitmapCreateApplyEffect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF295C)
[Address] EAT @explorer.exe (GdipBitmapGetHistogram) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF278C)
[Address] EAT @explorer.exe (GdipBitmapGetHistogramSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2740)
[Address] EAT @explorer.exe (GdipBitmapGetPixel) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2E18)
[Address] EAT @explorer.exe (GdipBitmapLockBits) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A8C490)
[Address] EAT @explorer.exe (GdipBitmapSetPixel) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA31E0)
[Address] EAT @explorer.exe (GdipBitmapSetResolution) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA4880)
[Address] EAT @explorer.exe (GdipBitmapUnlockBits) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A8C5C8)
[Address] EAT @explorer.exe (GdipClearPathMarkers) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF848)
[Address] EAT @explorer.exe (GdipCloneBitmapArea) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2F04)
[Address] EAT @explorer.exe (GdipCloneBitmapAreaI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD12D8)
[Address] EAT @explorer.exe (GdipCloneBrush) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA32C)
[Address] EAT @explorer.exe (GdipCloneCustomLineCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5450)
[Address] EAT @explorer.exe (GdipCloneFont) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE996C)
[Address] EAT @explorer.exe (GdipCloneFontFamily) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9C18)
[Address] EAT @explorer.exe (GdipCloneImage) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA70D8)
[Address] EAT @explorer.exe (GdipCloneImageAttributes) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2538)
[Address] EAT @explorer.exe (GdipCloneMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACB360)
[Address] EAT @explorer.exe (GdipClonePath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97B00184)
[Address] EAT @explorer.exe (GdipClonePen) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7048)
[Address] EAT @explorer.exe (GdipCloneRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB8FC)
[Address] EAT @explorer.exe (GdipCloneStringFormat) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8CF0)
[Address] EAT @explorer.exe (GdipClosePathFigure) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFFA28)
[Address] EAT @explorer.exe (GdipClosePathFigures) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF988)
[Address] EAT @explorer.exe (GdipCombineRegionPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB538)
[Address] EAT @explorer.exe (GdipCombineRegionRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB6F4)
[Address] EAT @explorer.exe (GdipCombineRegionRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB654)
[Address] EAT @explorer.exe (GdipCombineRegionRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA88A4)
[Address] EAT @explorer.exe (GdipComment) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9878)
[Address] EAT @explorer.exe (GdipConvertToEmfPlus) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE80FC)
[Address] EAT @explorer.exe (GdipConvertToEmfPlusToFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE7FFC)
[Address] EAT @explorer.exe (GdipConvertToEmfPlusToStream) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE7EFC)
[Address] EAT @explorer.exe (GdipCreateAdjustableArrowCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4B88)
[Address] EAT @explorer.exe (GdipCreateBitmapFromDirectDrawSurface) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF30A4)
[Address] EAT @explorer.exe (GdipCreateBitmapFromFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA06FC)
[Address] EAT @explorer.exe (GdipCreateBitmapFromFileICM) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3330)
[Address] EAT @explorer.exe (GdipCreateBitmapFromGdiDib) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9B994)
[Address] EAT @explorer.exe (GdipCreateBitmapFromGraphics) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF31D4)
[Address] EAT @explorer.exe (GdipCreateBitmapFromHBITMAP) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A82F28)
[Address] EAT @explorer.exe (GdipCreateBitmapFromHICON) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA7B2C)
[Address] EAT @explorer.exe (GdipCreateBitmapFromResource) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF300C)
[Address] EAT @explorer.exe (GdipCreateBitmapFromScan0) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A984A4)
[Address] EAT @explorer.exe (GdipCreateBitmapFromStream) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACFF40)
[Address] EAT @explorer.exe (GdipCreateBitmapFromStreamICM) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3480)
[Address] EAT @explorer.exe (GdipCreateCachedBitmap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD2F6C)
[Address] EAT @explorer.exe (GdipCreateCustomLineCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF551C)
[Address] EAT @explorer.exe (GdipCreateEffect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2DB0)
[Address] EAT @explorer.exe (GdipCreateFont) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA97BC)
[Address] EAT @explorer.exe (GdipCreateFontFamilyFromName) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8DD4)
[Address] EAT @explorer.exe (GdipCreateFontFromDC) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9520)
[Address] EAT @explorer.exe (GdipCreateFontFromLogfontA) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9408)
[Address] EAT @explorer.exe (GdipCreateFontFromLogfontW) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA9380)
[Address] EAT @explorer.exe (GdipCreateFromHDC) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A8D848)
[Address] EAT @explorer.exe (GdipCreateFromHDC2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF196C)
[Address] EAT @explorer.exe (GdipCreateFromHWND) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF18CC)
[Address] EAT @explorer.exe (GdipCreateFromHWNDICM) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF182C)
[Address] EAT @explorer.exe (GdipCreateHBITMAPFromBitmap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A93830)
[Address] EAT @explorer.exe (GdipCreateHICONFromBitmap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA779C)
[Address] EAT @explorer.exe (GdipCreateHalftonePalette) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA9ED8)
[Address] EAT @explorer.exe (GdipCreateHatchBrush) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA198)
[Address] EAT @explorer.exe (GdipCreateImageAttributes) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA6D10)
[Address] EAT @explorer.exe (GdipCreateLineBrush) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF984C)
[Address] EAT @explorer.exe (GdipCreateLineBrushFromRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD2150)
[Address] EAT @explorer.exe (GdipCreateLineBrushFromRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD2044)
[Address] EAT @explorer.exe (GdipCreateLineBrushFromRectWithAngle) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF961C)
[Address] EAT @explorer.exe (GdipCreateLineBrushFromRectWithAngleI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9514)
[Address] EAT @explorer.exe (GdipCreateLineBrushI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9738)
[Address] EAT @explorer.exe (GdipCreateMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A974C8)
[Address] EAT @explorer.exe (GdipCreateMatrix2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACB244)
[Address] EAT @explorer.exe (GdipCreateMatrix3) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC3C0)
[Address] EAT @explorer.exe (GdipCreateMatrix3I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC274)
[Address] EAT @explorer.exe (GdipCreateMetafileFromEmf) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEAB18)
[Address] EAT @explorer.exe (GdipCreateMetafileFromFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEAA30)
[Address] EAT @explorer.exe (GdipCreateMetafileFromStream) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEA854)
[Address] EAT @explorer.exe (GdipCreateMetafileFromWmf) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEAC0C)
[Address] EAT @explorer.exe (GdipCreateMetafileFromWmfFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEA93C)
[Address] EAT @explorer.exe (GdipCreatePath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9F200)
[Address] EAT @explorer.exe (GdipCreatePath2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97B003C4)
[Address] EAT @explorer.exe (GdipCreatePath2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97B0023C)
[Address] EAT @explorer.exe (GdipCreatePathGradient) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8778)
[Address] EAT @explorer.exe (GdipCreatePathGradientFromPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8598)
[Address] EAT @explorer.exe (GdipCreatePathGradientI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF864C)
[Address] EAT @explorer.exe (GdipCreatePathIter) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFCEE0)
[Address] EAT @explorer.exe (GdipCreatePen1) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9A7E8)
[Address] EAT @explorer.exe (GdipCreatePen2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A97D40)
[Address] EAT @explorer.exe (GdipCreateRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8040)
[Address] EAT @explorer.exe (GdipCreateRegionHrgn) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFBA00)
[Address] EAT @explorer.exe (GdipCreateRegionPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFBB94)
[Address] EAT @explorer.exe (GdipCreateRegionRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACD9CC)
[Address] EAT @explorer.exe (GdipCreateRegionRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACD918)
[Address] EAT @explorer.exe (GdipCreateRegionRgnData) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFBAC8)
[Address] EAT @explorer.exe (GdipCreateSolidFill) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A95630)
[Address] EAT @explorer.exe (GdipCreateStreamOnFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ABAB24)
[Address] EAT @explorer.exe (GdipCreateStringFormat) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8EA0)
[Address] EAT @explorer.exe (GdipCreateTexture) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA2A40)
[Address] EAT @explorer.exe (GdipCreateTexture2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9EC4)
[Address] EAT @explorer.exe (GdipCreateTexture2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9C40)
[Address] EAT @explorer.exe (GdipCreateTextureIA) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9D10)
[Address] EAT @explorer.exe (GdipCreateTextureIAI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9BF0)
[Address] EAT @explorer.exe (GdipDeleteBrush) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A95170)
[Address] EAT @explorer.exe (GdipDeleteCachedBitmap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA3498)
[Address] EAT @explorer.exe (GdipDeleteCustomLineCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5308)
[Address] EAT @explorer.exe (GdipDeleteEffect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2D60)
[Address] EAT @explorer.exe (GdipDeleteFont) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9834C)
[Address] EAT @explorer.exe (GdipDeleteFontFamily) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9CD0)
[Address] EAT @explorer.exe (GdipDeleteGraphics) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A8D378)
[Address] EAT @explorer.exe (GdipDeleteMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A973FC)
[Address] EAT @explorer.exe (GdipDeletePath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9F2E0)
[Address] EAT @explorer.exe (GdipDeletePathIter) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFCE4C)
[Address] EAT @explorer.exe (GdipDeletePen) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9521C)
[Address] EAT @explorer.exe (GdipDeletePrivateFontCollection) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE924C)
[Address] EAT @explorer.exe (GdipDeleteRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A976B8)
[Address] EAT @explorer.exe (GdipDeleteStringFormat) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8C7C)
[Address] EAT @explorer.exe (GdipDisposeImage) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A81CE0)
[Address] EAT @explorer.exe (GdipDisposeImageAttributes) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA6B70)
[Address] EAT @explorer.exe (GdipDrawArc) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF040C)
[Address] EAT @explorer.exe (GdipDrawArcI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0360)
[Address] EAT @explorer.exe (GdipDrawBezier) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0208)
[Address] EAT @explorer.exe (GdipDrawBezierI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0114)
[Address] EAT @explorer.exe (GdipDrawBeziers) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEFFF8)
[Address] EAT @explorer.exe (GdipDrawBeziersI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEFEDC)
[Address] EAT @explorer.exe (GdipDrawCachedBitmap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD0EF0)
[Address] EAT @explorer.exe (GdipDrawClosedCurve) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF140)
[Address] EAT @explorer.exe (GdipDrawClosedCurve2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEEF38)
[Address] EAT @explorer.exe (GdipDrawClosedCurve2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEEE44)
[Address] EAT @explorer.exe (GdipDrawClosedCurveI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF05C)
[Address] EAT @explorer.exe (GdipDrawCurve) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF7B4)
[Address] EAT @explorer.exe (GdipDrawCurve2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF59C)
[Address] EAT @explorer.exe (GdipDrawCurve2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF4A8)
[Address] EAT @explorer.exe (GdipDrawCurve3) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF374)
[Address] EAT @explorer.exe (GdipDrawCurve3I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF268)
[Address] EAT @explorer.exe (GdipDrawCurveI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF6D0)
[Address] EAT @explorer.exe (GdipDrawDriverString) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AED9A8)
[Address] EAT @explorer.exe (GdipDrawEllipse) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEFB64)
[Address] EAT @explorer.exe (GdipDrawEllipseI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEFAD4)
[Address] EAT @explorer.exe (GdipDrawImage) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA2DF0)
[Address] EAT @explorer.exe (GdipDrawImageFX) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AED004)
[Address] EAT @explorer.exe (GdipDrawImageI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA2D6C)
[Address] EAT @explorer.exe (GdipDrawImagePointRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACD77C)
[Address] EAT @explorer.exe (GdipDrawImagePointRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACD6B8)
[Address] EAT @explorer.exe (GdipDrawImagePoints) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AED658)
[Address] EAT @explorer.exe (GdipDrawImagePointsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AED53C)
[Address] EAT @explorer.exe (GdipDrawImagePointsRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AED2CC)
[Address] EAT @explorer.exe (GdipDrawImagePointsRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AED134)
[Address] EAT @explorer.exe (GdipDrawImageRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A92664)
[Address] EAT @explorer.exe (GdipDrawImageRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A925C4)
[Address] EAT @explorer.exe (GdipDrawImageRectRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACEFC4)
[Address] EAT @explorer.exe (GdipDrawImageRectRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACEE90)
[Address] EAT @explorer.exe (GdipDrawLine) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF05D8)
[Address] EAT @explorer.exe (GdipDrawLineI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0548)
[Address] EAT @explorer.exe (GdipDrawLines) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9CA40)
[Address] EAT @explorer.exe (GdipDrawLinesI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9C958)
[Address] EAT @explorer.exe (GdipDrawPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACAFA0)
[Address] EAT @explorer.exe (GdipDrawPie) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF998)
[Address] EAT @explorer.exe (GdipDrawPieI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEF8EC)
[Address] EAT @explorer.exe (GdipDrawPolygon) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB27D0)
[Address] EAT @explorer.exe (GdipDrawPolygonI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB26E0)
[Address] EAT @explorer.exe (GdipDrawRectangle) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9CD30)

[mmmartin]

[Address] EAT @explorer.exe (GdipDrawRectangleI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9CC90)
[Address] EAT @explorer.exe (GdipDrawRectangles) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEFDC0)
[Address] EAT @explorer.exe (GdipDrawRectanglesI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEFC88)
[Address] EAT @explorer.exe (GdipDrawString) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE018)
[Address] EAT @explorer.exe (GdipEmfToWmfBits) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB6A28)
[Address] EAT @explorer.exe (GdipEndContainer) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEAF58)
[Address] EAT @explorer.exe (GdipEnumerateMetafileDestPoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AECE6C)
[Address] EAT @explorer.exe (GdipEnumerateMetafileDestPointI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AECDD0)
[Address] EAT @explorer.exe (GdipEnumerateMetafileDestPoints) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEC9D4)
[Address] EAT @explorer.exe (GdipEnumerateMetafileDestPointsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEC894)
[Address] EAT @explorer.exe (GdipEnumerateMetafileDestRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AECC38)
[Address] EAT @explorer.exe (GdipEnumerateMetafileDestRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AECB80)
[Address] EAT @explorer.exe (GdipEnumerateMetafileSrcRectDestPoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEC6D0)
[Address] EAT @explorer.exe (GdipEnumerateMetafileSrcRectDestPointI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEC5E0)
[Address] EAT @explorer.exe (GdipEnumerateMetafileSrcRectDestPoints) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEC15C)
[Address] EAT @explorer.exe (GdipEnumerateMetafileSrcRectDestPointsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEBFD4)
[Address] EAT @explorer.exe (GdipEnumerateMetafileSrcRectDestRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEC41C)
[Address] EAT @explorer.exe (GdipEnumerateMetafileSrcRectDestRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEC328)
[Address] EAT @explorer.exe (GdipFillClosedCurve) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE524)
[Address] EAT @explorer.exe (GdipFillClosedCurve2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE310)
[Address] EAT @explorer.exe (GdipFillClosedCurve2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE210)
[Address] EAT @explorer.exe (GdipFillClosedCurveI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE440)
[Address] EAT @explorer.exe (GdipFillEllipse) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9F768)
[Address] EAT @explorer.exe (GdipFillEllipseI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE990)
[Address] EAT @explorer.exe (GdipFillPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE654)
[Address] EAT @explorer.exe (GdipFillPie) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE850)
[Address] EAT @explorer.exe (GdipFillPieI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEE79C)
[Address] EAT @explorer.exe (GdipFillPolygon) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB29AC)
[Address] EAT @explorer.exe (GdipFillPolygon2) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEEB04)
[Address] EAT @explorer.exe (GdipFillPolygon2I) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEEA20)
[Address] EAT @explorer.exe (GdipFillPolygonI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB28BC)
[Address] EAT @explorer.exe (GdipFillRectangle) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A95870)
[Address] EAT @explorer.exe (GdipFillRectangleI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A957DC)
[Address] EAT @explorer.exe (GdipFillRectangles) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEED28)
[Address] EAT @explorer.exe (GdipFillRectanglesI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEEC28)
[Address] EAT @explorer.exe (GdipFillRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACD354)
[Address] EAT @explorer.exe (GdipFindFirstImageItem) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3730)
[Address] EAT @explorer.exe (GdipFindNextImageItem) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3680)
[Address] EAT @explorer.exe (GdipFlattenPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACAEC4)
[Address] EAT @explorer.exe (GdipFlush) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1764)
[Address] EAT @explorer.exe (GdipFree) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A89A74)
[Address] EAT @explorer.exe (GdipGetAdjustableArrowCapFillState) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF45B0)
[Address] EAT @explorer.exe (GdipGetAdjustableArrowCapHeight) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4A10)
[Address] EAT @explorer.exe (GdipGetAdjustableArrowCapMiddleInset) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4720)
[Address] EAT @explorer.exe (GdipGetAdjustableArrowCapWidth) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4898)
[Address] EAT @explorer.exe (GdipGetAllPropertyItems) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA11D8)
[Address] EAT @explorer.exe (GdipGetBrushType) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA27C)
[Address] EAT @explorer.exe (GdipGetCellAscent) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9708)
[Address] EAT @explorer.exe (GdipGetCellDescent) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9644)
[Address] EAT @explorer.exe (GdipGetClip) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8424)
[Address] EAT @explorer.exe (GdipGetClipBounds) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB938)
[Address] EAT @explorer.exe (GdipGetClipBoundsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A97B04)
[Address] EAT @explorer.exe (GdipGetCompositingMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACD0E0)
[Address] EAT @explorer.exe (GdipGetCompositingQuality) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1478)
[Address] EAT @explorer.exe (GdipGetCustomLineCapBaseCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4EF4)
[Address] EAT @explorer.exe (GdipGetCustomLineCapBaseInset) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4DBC)
[Address] EAT @explorer.exe (GdipGetCustomLineCapStrokeCaps) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5198)
[Address] EAT @explorer.exe (GdipGetCustomLineCapStrokeJoin) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5058)
[Address] EAT @explorer.exe (GdipGetCustomLineCapType) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF539C)
[Address] EAT @explorer.exe (GdipGetCustomLineCapWidthScale) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4C84)
[Address] EAT @explorer.exe (GdipGetDC) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB35E8)
[Address] EAT @explorer.exe (GdipGetDpiX) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0A68)
[Address] EAT @explorer.exe (GdipGetDpiY) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8AD8)
[Address] EAT @explorer.exe (GdipGetEffectParameterSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2C8C)
[Address] EAT @explorer.exe (GdipGetEffectParameters) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2C18)
[Address] EAT @explorer.exe (GdipGetEmHeight) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA9A70)
[Address] EAT @explorer.exe (GdipGetEncoderParameterList) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF419C)
[Address] EAT @explorer.exe (GdipGetEncoderParameterListSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4260)
[Address] EAT @explorer.exe (GdipGetFamily) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8C70)
[Address] EAT @explorer.exe (GdipGetFamilyName) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA9984)
[Address] EAT @explorer.exe (GdipGetFontCollectionFamilyCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9178)
[Address] EAT @explorer.exe (GdipGetFontCollectionFamilyList) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE90BC)
[Address] EAT @explorer.exe (GdipGetFontHeight) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA9660)
[Address] EAT @explorer.exe (GdipGetFontHeightGivenDPI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9A64)
[Address] EAT @explorer.exe (GdipGetFontSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8CF0)
[Address] EAT @explorer.exe (GdipGetFontStyle) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8B6C)
[Address] EAT @explorer.exe (GdipGetFontUnit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8BF0)
[Address] EAT @explorer.exe (GdipGetGenericFontFamilyMonospace) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9DC4)
[Address] EAT @explorer.exe (GdipGetGenericFontFamilySansSerif) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9EAC)
[Address] EAT @explorer.exe (GdipGetGenericFontFamilySerif) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9E38)
[Address] EAT @explorer.exe (GdipGetHatchBackgroundColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA030)
[Address] EAT @explorer.exe (GdipGetHatchForegroundColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF84E4)
[Address] EAT @explorer.exe (GdipGetHatchStyle) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA0E4)
[Address] EAT @explorer.exe (GdipGetHemfFromMetafile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB5A24)
[Address] EAT @explorer.exe (GdipGetImageAttributesAdjustedPalette) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1A18)
[Address] EAT @explorer.exe (GdipGetImageBounds) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3CEC)
[Address] EAT @explorer.exe (GdipGetImageDecoders) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AC9270)
[Address] EAT @explorer.exe (GdipGetImageDecodersSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AC9428)
[Address] EAT @explorer.exe (GdipGetImageDimension) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3C28)
[Address] EAT @explorer.exe (GdipGetImageEncoders) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A86798)
[Address] EAT @explorer.exe (GdipGetImageEncodersSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A869D8)
[Address] EAT @explorer.exe (GdipGetImageFlags) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF396C)
[Address] EAT @explorer.exe (GdipGetImageGraphicsContext) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A99214)
[Address] EAT @explorer.exe (GdipGetImageHeight) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A8B680)
[Address] EAT @explorer.exe (GdipGetImageHorizontalResolution) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3B3C)
[Address] EAT @explorer.exe (GdipGetImageItemData) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF35D0)
[Address] EAT @explorer.exe (GdipGetImagePalette) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD05B4)
[Address] EAT @explorer.exe (GdipGetImagePaletteSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD067C)
[Address] EAT @explorer.exe (GdipGetImagePixelFormat) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A8B588)
[Address] EAT @explorer.exe (GdipGetImageRawFormat) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA18F4)
[Address] EAT @explorer.exe (GdipGetImageThumbnail) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF37E0)
[Address] EAT @explorer.exe (GdipGetImageType) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA6EA0)
[Address] EAT @explorer.exe (GdipGetImageVerticalResolution) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3A50)
[Address] EAT @explorer.exe (GdipGetImageWidth) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A8C344)
[Address] EAT @explorer.exe (GdipGetInterpolationMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1108)
[Address] EAT @explorer.exe (GdipGetLineBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF90C8)
[Address] EAT @explorer.exe (GdipGetLineBlendCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7A4C)
[Address] EAT @explorer.exe (GdipGetLineColors) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9360)
[Address] EAT @explorer.exe (GdipGetLineGammaCorrection) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9198)
[Address] EAT @explorer.exe (GdipGetLinePresetBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8E88)
[Address] EAT @explorer.exe (GdipGetLinePresetBlendCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9004)
[Address] EAT @explorer.exe (GdipGetLineRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7C48)
[Address] EAT @explorer.exe (GdipGetLineRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9280)
[Address] EAT @explorer.exe (GdipGetLineSpacing) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA9B34)
[Address] EAT @explorer.exe (GdipGetLineTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9AD0)
[Address] EAT @explorer.exe (GdipGetLineWrapMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8AA0)
[Address] EAT @explorer.exe (GdipGetLogFontA) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9B0C)
[Address] EAT @explorer.exe (GdipGetLogFontW) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8EEC)
[Address] EAT @explorer.exe (GdipGetMatrixElements) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A975F0)
[Address] EAT @explorer.exe (GdipGetMetafileDownLevelRasterizationLimit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9F20)
[Address] EAT @explorer.exe (GdipGetMetafileHeaderFromEmf) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEAE8C)
[Address] EAT @explorer.exe (GdipGetMetafileHeaderFromFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEAE34)
[Address] EAT @explorer.exe (GdipGetMetafileHeaderFromMetafile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEAD14)
[Address] EAT @explorer.exe (GdipGetMetafileHeaderFromStream) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEADC4)
[Address] EAT @explorer.exe (GdipGetMetafileHeaderFromWmf) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEAEE4)
[Address] EAT @explorer.exe (GdipGetNearestColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF06F8)
[Address] EAT @explorer.exe (GdipGetPageScale) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0BD0)
[Address] EAT @explorer.exe (GdipGetPageUnit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0C84)
[Address] EAT @explorer.exe (GdipGetPathData) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFFB68)
[Address] EAT @explorer.exe (GdipGetPathFillMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFFC14)
[Address] EAT @explorer.exe (GdipGetPathGradientBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF797C)
[Address] EAT @explorer.exe (GdipGetPathGradientBlendCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7A4C)
[Address] EAT @explorer.exe (GdipGetPathGradientCenterColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF84E4)
[Address] EAT @explorer.exe (GdipGetPathGradientCenterPoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8034)
[Address] EAT @explorer.exe (GdipGetPathGradientCenterPointI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7F98)
[Address] EAT @explorer.exe (GdipGetPathGradientFocusScales) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF71BC)
[Address] EAT @explorer.exe (GdipGetPathGradientGammaCorrection) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7B00)
[Address] EAT @explorer.exe (GdipGetPathGradientPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF80E0)
[Address] EAT @explorer.exe (GdipGetPathGradientPointCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7DB4)
[Address] EAT @explorer.exe (GdipGetPathGradientPresetBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7764)
[Address] EAT @explorer.exe (GdipGetPathGradientPresetBlendCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9004)
[Address] EAT @explorer.exe (GdipGetPathGradientRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7C48)
[Address] EAT @explorer.exe (GdipGetPathGradientRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9280)
[Address] EAT @explorer.exe (GdipGetPathGradientSurroundColorCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7CF8)
[Address] EAT @explorer.exe (GdipGetPathGradientSurroundColorsWithCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF82FC)
[Address] EAT @explorer.exe (GdipGetPathGradientTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9AD0)
[Address] EAT @explorer.exe (GdipGetPathGradientWrapMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8AA0)
[Address] EAT @explorer.exe (GdipGetPathLastPoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF6E0)
[Address] EAT @explorer.exe (GdipGetPathPoints) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFFE14)
[Address] EAT @explorer.exe (GdipGetPathPointsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFFCC8)
[Address] EAT @explorer.exe (GdipGetPathTypes) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFFF24)
[Address] EAT @explorer.exe (GdipGetPathWorldBounds) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFD680)
[Address] EAT @explorer.exe (GdipGetPathWorldBoundsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFD4FC)
[Address] EAT @explorer.exe (GdipGetPenBrushFill) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5D44)
[Address] EAT @explorer.exe (GdipGetPenColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9F640)
[Address] EAT @explorer.exe (GdipGetPenCompoundArray) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF56CC)
[Address] EAT @explorer.exe (GdipGetPenCompoundCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF586C)
[Address] EAT @explorer.exe (GdipGetPenCustomEndCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF674C)
[Address] EAT @explorer.exe (GdipGetPenCustomStartCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF68FC)
[Address] EAT @explorer.exe (GdipGetPenDashArray) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF591C)
[Address] EAT @explorer.exe (GdipGetPenDashCap197819) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6B5C)
[Address] EAT @explorer.exe (GdipGetPenDashCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5A94)
[Address] EAT @explorer.exe (GdipGetPenDashOffset) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5BE4)
[Address] EAT @explorer.exe (GdipGetPenDashStyle) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5C94)
[Address] EAT @explorer.exe (GdipGetPenEndCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6C10)
[Address] EAT @explorer.exe (GdipGetPenFillType) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9FB50)
[Address] EAT @explorer.exe (GdipGetPenLineJoin) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6AAC)
[Address] EAT @explorer.exe (GdipGetPenMiterLimit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF65F0)
[Address] EAT @explorer.exe (GdipGetPenMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6498)
[Address] EAT @explorer.exe (GdipGetPenStartCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6CC0)
[Address] EAT @explorer.exe (GdipGetPenTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF624C)
[Address] EAT @explorer.exe (GdipGetPenUnit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6EE4)
[Address] EAT @explorer.exe (GdipGetPenWidth) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9F6E0)
[Address] EAT @explorer.exe (GdipGetPixelOffsetMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF13C4)
[Address] EAT @explorer.exe (GdipGetPointCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97B00030)
[Address] EAT @explorer.exe (GdipGetPropertyCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3F08)
[Address] EAT @explorer.exe (GdipGetPropertyIdList) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3E6C)
[Address] EAT @explorer.exe (GdipGetPropertyItem) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA57EC)
[Address] EAT @explorer.exe (GdipGetPropertyItemSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA5760)
[Address] EAT @explorer.exe (GdipGetPropertySize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9FEF0)
[Address] EAT @explorer.exe (GdipGetRegionBounds) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB260)
[Address] EAT @explorer.exe (GdipGetRegionBoundsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB0C4)
[Address] EAT @explorer.exe (GdipGetRegionData) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFABA8)
[Address] EAT @explorer.exe (GdipGetRegionDataSize) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFAC7C)
[Address] EAT @explorer.exe (GdipGetRegionHRgn) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA866C)
[Address] EAT @explorer.exe (GdipGetRegionScans) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA4EC)
[Address] EAT @explorer.exe (GdipGetRegionScansCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA60C)
[Address] EAT @explorer.exe (GdipGetRegionScansI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA3EC)
[Address] EAT @explorer.exe (GdipGetRenderingOrigin) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF15D4)
[Address] EAT @explorer.exe (GdipGetSmoothingMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9AA70)
[Address] EAT @explorer.exe (GdipGetSolidFillColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9964)
[Address] EAT @explorer.exe (GdipGetStringFormatAlign) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8A30)
[Address] EAT @explorer.exe (GdipGetStringFormatDigitSubstitution) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8390)
[Address] EAT @explorer.exe (GdipGetStringFormatFlags) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8B58)
[Address] EAT @explorer.exe (GdipGetStringFormatHotkeyPrefix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE87E0)
[Address] EAT @explorer.exe (GdipGetStringFormatLineAlign) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8908)
[Address] EAT @explorer.exe (GdipGetStringFormatMeasurableCharacterRangeCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE856C)
[Address] EAT @explorer.exe (GdipGetStringFormatTabStopCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8698)
[Address] EAT @explorer.exe (GdipGetStringFormatTabStops) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE85DC)
[Address] EAT @explorer.exe (GdipGetStringFormatTrimming) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8260)
[Address] EAT @explorer.exe (GdipGetTextContrast) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF11B0)
[Address] EAT @explorer.exe (GdipGetTextRenderingHint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8160)
[Address] EAT @explorer.exe (GdipGetTextureImage) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACDE20)
[Address] EAT @explorer.exe (GdipGetTextureTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9AD0)
[Address] EAT @explorer.exe (GdipGetTextureWrapMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACDCCC)
[Address] EAT @explorer.exe (GdipGetVisibleClipBounds) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB7D0)
[Address] EAT @explorer.exe (GdipGetVisibleClipBoundsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB690)
[Address] EAT @explorer.exe (GdipGetWorldTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9780C)
[Address] EAT @explorer.exe (GdipGraphicsClear) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA19E8)
[Address] EAT @explorer.exe (GdipGraphicsSetAbort) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF25EC)
[Address] EAT @explorer.exe (GdipImageForceValidation) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA6F4C)
[Address] EAT @explorer.exe (GdipImageGetFrameCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD0478)
[Address] EAT @explorer.exe (GdipImageGetFrameDimensionsCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD0204)
[Address] EAT @explorer.exe (GdipImageGetFrameDimensionsList) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD02A4)
[Address] EAT @explorer.exe (GdipImageRotateFlip) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD3500)
[Address] EAT @explorer.exe (GdipImageSelectActiveFrame) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3F94)
[Address] EAT @explorer.exe (GdipImageSetAbort) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2690)
[Address] EAT @explorer.exe (GdipInitializePalette) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2A30)
[Address] EAT @explorer.exe (GdipInvertMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC100)

[mmmartin]

[Address] EAT @explorer.exe (GdipIsClipEmpty) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB884)
[Address] EAT @explorer.exe (GdipIsEmptyRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFAF40)
[Address] EAT @explorer.exe (GdipIsEqualRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFAD48)
[Address] EAT @explorer.exe (GdipIsInfiniteRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA8268)
[Address] EAT @explorer.exe (GdipIsMatrixEqual) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFBCA0)
[Address] EAT @explorer.exe (GdipIsMatrixIdentity) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A97760)
[Address] EAT @explorer.exe (GdipIsMatrixInvertible) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFBDC4)
[Address] EAT @explorer.exe (GdipIsOutlineVisiblePathPoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFD080)
[Address] EAT @explorer.exe (GdipIsOutlineVisiblePathPointI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFCFF8)
[Address] EAT @explorer.exe (GdipIsStyleAvailable) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE97B8)
[Address] EAT @explorer.exe (GdipIsVisibleClipEmpty) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB5D4)
[Address] EAT @explorer.exe (GdipIsVisiblePathPoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFD344)
[Address] EAT @explorer.exe (GdipIsVisiblePathPointI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFD2C8)
[Address] EAT @explorer.exe (GdipIsVisiblePoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB4F0)
[Address] EAT @explorer.exe (GdipIsVisiblePointI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB480)
[Address] EAT @explorer.exe (GdipIsVisibleRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB37C)
[Address] EAT @explorer.exe (GdipIsVisibleRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB2F0)
[Address] EAT @explorer.exe (GdipIsVisibleRegionPoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFAA08)
[Address] EAT @explorer.exe (GdipIsVisibleRegionPointI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA98C)
[Address] EAT @explorer.exe (GdipIsVisibleRegionRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA7A8)
[Address] EAT @explorer.exe (GdipIsVisibleRegionRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFA70C)
[Address] EAT @explorer.exe (GdipLoadImageFromFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF44D4)
[Address] EAT @explorer.exe (GdipLoadImageFromFileICM) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4314)
[Address] EAT @explorer.exe (GdipLoadImageFromStream) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A99F24)
[Address] EAT @explorer.exe (GdipLoadImageFromStreamICM) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF43F4)
[Address] EAT @explorer.exe (GdipMeasureCharacterRanges) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEDC28)
[Address] EAT @explorer.exe (GdipMeasureDriverString) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AED7D0)
[Address] EAT @explorer.exe (GdipMeasureString) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEDDF0)
[Address] EAT @explorer.exe (GdipMultiplyLineTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7354)
[Address] EAT @explorer.exe (GdipMultiplyMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACA8BC)
[Address] EAT @explorer.exe (GdipMultiplyPathGradientTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7354)
[Address] EAT @explorer.exe (GdipMultiplyPenTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6094)
[Address] EAT @explorer.exe (GdipMultiplyTextureTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7354)
[Address] EAT @explorer.exe (GdipMultiplyWorldTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0F58)
[Address] EAT @explorer.exe (GdipNewInstalledFontCollection) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE93A0)
[Address] EAT @explorer.exe (GdipNewPrivateFontCollection) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE92EC)
[Address] EAT @explorer.exe (GdipPathIterCopyData) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC4A8)
[Address] EAT @explorer.exe (GdipPathIterEnumerate) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC598)
[Address] EAT @explorer.exe (GdipPathIterGetCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC93C)
[Address] EAT @explorer.exe (GdipPathIterGetSubpathCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC888)
[Address] EAT @explorer.exe (GdipPathIterHasCurve) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC728)
[Address] EAT @explorer.exe (GdipPathIterIsValid) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC7D4)
[Address] EAT @explorer.exe (GdipPathIterNextMarker) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFCAB4)
[Address] EAT @explorer.exe (GdipPathIterNextMarkerPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC9F0)
[Address] EAT @explorer.exe (GdipPathIterNextPathType) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFCB98)
[Address] EAT @explorer.exe (GdipPathIterNextSubpath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFCD5C)
[Address] EAT @explorer.exe (GdipPathIterNextSubpathPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFCC84)
[Address] EAT @explorer.exe (GdipPathIterRewind) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC680)
[Address] EAT @explorer.exe (GdipPlayMetafileRecord) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEBEF4)
[Address] EAT @explorer.exe (GdipPlayTSClientRecord) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE79F8)
[Address] EAT @explorer.exe (GdipPrivateAddFontFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE9020)
[Address] EAT @explorer.exe (GdipPrivateAddMemoryFont) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8F74)
[Address] EAT @explorer.exe (GdipRecordMetafile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AC2A54)
[Address] EAT @explorer.exe (GdipRecordMetafileFileName) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEA510)
[Address] EAT @explorer.exe (GdipRecordMetafileFileNameI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEA40C)
[Address] EAT @explorer.exe (GdipRecordMetafileI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEA66C)
[Address] EAT @explorer.exe (GdipRecordMetafileStream) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEA2B0)
[Address] EAT @explorer.exe (GdipRecordMetafileStreamI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEA1AC)
[Address] EAT @explorer.exe (GdipReleaseDC) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB3508)
[Address] EAT @explorer.exe (GdipRemovePropertyItem) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF3DE0)
[Address] EAT @explorer.exe (GdipResetClip) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB2D60)
[Address] EAT @explorer.exe (GdipResetImageAttributes) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2358)
[Address] EAT @explorer.exe (GdipResetLineTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8914)
[Address] EAT @explorer.exe (GdipResetPageTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0D38)
[Address] EAT @explorer.exe (GdipResetPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97B000E0)
[Address] EAT @explorer.exe (GdipResetPathGradientTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8914)
[Address] EAT @explorer.exe (GdipResetPenTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6198)
[Address] EAT @explorer.exe (GdipResetTextureTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8914)
[Address] EAT @explorer.exe (GdipResetWorldTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF106C)
[Address] EAT @explorer.exe (GdipRestoreGraphics) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA81E8)
[Address] EAT @explorer.exe (GdipReversePath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF7A8)
[Address] EAT @explorer.exe (GdipRotateLineTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9A18)
[Address] EAT @explorer.exe (GdipRotateMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACB700)
[Address] EAT @explorer.exe (GdipRotatePathGradientTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9A18)
[Address] EAT @explorer.exe (GdipRotatePenTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5E0C)
[Address] EAT @explorer.exe (GdipRotateTextureTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9A18)
[Address] EAT @explorer.exe (GdipRotateWorldTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0DE0)
[Address] EAT @explorer.exe (GdipSaveAdd) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF40F8)
[Address] EAT @explorer.exe (GdipSaveAddImage) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4040)
[Address] EAT @explorer.exe (GdipSaveGraphics) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA7F9C)
[Address] EAT @explorer.exe (GdipSaveImageToFile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A85FD0)
[Address] EAT @explorer.exe (GdipSaveImageToStream) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9FC80)
[Address] EAT @explorer.exe (GdipScaleLineTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF728C)
[Address] EAT @explorer.exe (GdipScaleMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACA738)
[Address] EAT @explorer.exe (GdipScalePathGradientTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF728C)
[Address] EAT @explorer.exe (GdipScalePenTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5EDC)
[Address] EAT @explorer.exe (GdipScaleTextureTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF728C)
[Address] EAT @explorer.exe (GdipScaleWorldTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0E94)
[Address] EAT @explorer.exe (GdipSetAdjustableArrowCapFillState) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4660)
[Address] EAT @explorer.exe (GdipSetAdjustableArrowCapHeight) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4AC0)
[Address] EAT @explorer.exe (GdipSetAdjustableArrowCapMiddleInset) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF47D0)
[Address] EAT @explorer.exe (GdipSetAdjustableArrowCapWidth) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4948)
[Address] EAT @explorer.exe (GdipSetClipGraphics) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEBDEC)
[Address] EAT @explorer.exe (GdipSetClipHrgn) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEBB08)
[Address] EAT @explorer.exe (GdipSetClipPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEBCDC)
[Address] EAT @explorer.exe (GdipSetClipRect) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A969B0)
[Address] EAT @explorer.exe (GdipSetClipRectI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A96910)
[Address] EAT @explorer.exe (GdipSetClipRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEBBD4)
[Address] EAT @explorer.exe (GdipSetCompositingMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA3358)
[Address] EAT @explorer.exe (GdipSetCompositingQuality) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF152C)
[Address] EAT @explorer.exe (GdipSetCustomLineCapBaseCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4FA0)
[Address] EAT @explorer.exe (GdipSetCustomLineCapBaseInset) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4E5C)
[Address] EAT @explorer.exe (GdipSetCustomLineCapStrokeCaps) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5250)
[Address] EAT @explorer.exe (GdipSetCustomLineCapStrokeJoin) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5104)
[Address] EAT @explorer.exe (GdipSetCustomLineCapWidthScale) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF4D24)
[Address] EAT @explorer.exe (GdipSetEffectParameters) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2CEC)
[Address] EAT @explorer.exe (GdipSetEmpty) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB7C4)
[Address] EAT @explorer.exe (GdipSetImageAttributesCachedBackground) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1BC8)
[Address] EAT @explorer.exe (GdipSetImageAttributesColorKeys) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA7460)
[Address] EAT @explorer.exe (GdipSetImageAttributesColorMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2284)
[Address] EAT @explorer.exe (GdipSetImageAttributesGamma) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF205C)
[Address] EAT @explorer.exe (GdipSetImageAttributesNoOp) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1F54)
[Address] EAT @explorer.exe (GdipSetImageAttributesOutputChannel) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1E38)
[Address] EAT @explorer.exe (GdipSetImageAttributesOutputChannelColorProfile) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1D74)
[Address] EAT @explorer.exe (GdipSetImageAttributesRemapTable) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1C70)
[Address] EAT @explorer.exe (GdipSetImageAttributesThreshold) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2164)
[Address] EAT @explorer.exe (GdipSetImageAttributesToIdentity) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF2448)
[Address] EAT @explorer.exe (GdipSetImageAttributesWrapMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1B10)
[Address] EAT @explorer.exe (GdipSetImagePalette) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF38AC)
[Address] EAT @explorer.exe (GdipSetInfinite) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB860)
[Address] EAT @explorer.exe (GdipSetInterpolationMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD1170)
[Address] EAT @explorer.exe (GdipSetLineBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD273C)
[Address] EAT @explorer.exe (GdipSetLineColors) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9454)
[Address] EAT @explorer.exe (GdipSetLineGammaCorrection) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF9214)
[Address] EAT @explorer.exe (GdipSetLineLinearBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8C10)
[Address] EAT @explorer.exe (GdipSetLinePresetBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8CD0)
[Address] EAT @explorer.exe (GdipSetLineSigmaBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD2A58)
[Address] EAT @explorer.exe (GdipSetLineTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF89B4)
[Address] EAT @explorer.exe (GdipSetLineWrapMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8B50)
[Address] EAT @explorer.exe (GdipSetMatrixElements) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACA7E0)
[Address] EAT @explorer.exe (GdipSetMetafileDownLevelRasterizationLimit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEA068)
[Address] EAT @explorer.exe (GdipSetPageScale) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF0B1C)
[Address] EAT @explorer.exe (GdipSetPageUnit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA9E40)
[Address] EAT @explorer.exe (GdipSetPathFillMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9F4BC)
[Address] EAT @explorer.exe (GdipSetPathGradientBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF78A8)
[Address] EAT @explorer.exe (GdipSetPathGradientCenterColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8444)
[Address] EAT @explorer.exe (GdipSetPathGradientCenterPoint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7EDC)
[Address] EAT @explorer.exe (GdipSetPathGradientCenterPointI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7E68)
[Address] EAT @explorer.exe (GdipSetPathGradientFocusScales) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7104)
[Address] EAT @explorer.exe (GdipSetPathGradientGammaCorrection) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7BB0)
[Address] EAT @explorer.exe (GdipSetPathGradientLinearBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8C10)
[Address] EAT @explorer.exe (GdipSetPathGradientPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF80E0)
[Address] EAT @explorer.exe (GdipSetPathGradientPresetBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF75C4)
[Address] EAT @explorer.exe (GdipSetPathGradientSigmaBlend) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7504)
[Address] EAT @explorer.exe (GdipSetPathGradientSurroundColorsWithCount) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF8110)
[Address] EAT @explorer.exe (GdipSetPathGradientTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF89B4)
[Address] EAT @explorer.exe (GdipSetPathGradientWrapMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF7458)
[Address] EAT @explorer.exe (GdipSetPathMarker) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFF8E8)
[Address] EAT @explorer.exe (GdipSetPenBrushFill) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A97974)
[Address] EAT @explorer.exe (GdipSetPenColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB08F8)
[Address] EAT @explorer.exe (GdipSetPenCompoundArray) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF57B0)
[Address] EAT @explorer.exe (GdipSetPenCustomEndCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6814)
[Address] EAT @explorer.exe (GdipSetPenCustomStartCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF69C4)
[Address] EAT @explorer.exe (GdipSetPenDashArray) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF59D8)
[Address] EAT @explorer.exe (GdipSetPenDashCap197819) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6D70)
[Address] EAT @explorer.exe (GdipSetPenDashOffset) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5B44)
[Address] EAT @explorer.exe (GdipSetPenDashStyle) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AB0860)
[Address] EAT @explorer.exe (GdipSetPenEndCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9ABC0)
[Address] EAT @explorer.exe (GdipSetPenLineCap197819) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6E18)
[Address] EAT @explorer.exe (GdipSetPenLineJoin) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9AC50)
[Address] EAT @explorer.exe (GdipSetPenMiterLimit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF66A0)
[Address] EAT @explorer.exe (GdipSetPenMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6548)
[Address] EAT @explorer.exe (GdipSetPenStartCap) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A9AB30)
[Address] EAT @explorer.exe (GdipSetPenTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6368)
[Address] EAT @explorer.exe (GdipSetPenUnit) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF6F94)
[Address] EAT @explorer.exe (GdipSetPenWidth) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A96B50)
[Address] EAT @explorer.exe (GdipSetPixelOffsetMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AD346C)
[Address] EAT @explorer.exe (GdipSetPropertyItem) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA4558)
[Address] EAT @explorer.exe (GdipSetRenderingOrigin) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF16AC)
[Address] EAT @explorer.exe (GdipSetSmoothingMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A91DB8)
[Address] EAT @explorer.exe (GdipSetSolidFillColor) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A96C1C)
[Address] EAT @explorer.exe (GdipSetStringFormatAlign) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8AC0)
[Address] EAT @explorer.exe (GdipSetStringFormatDigitSubstitution) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE843C)
[Address] EAT @explorer.exe (GdipSetStringFormatFlags) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8BE8)
[Address] EAT @explorer.exe (GdipSetStringFormatHotkeyPrefix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8870)
[Address] EAT @explorer.exe (GdipSetStringFormatLineAlign) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8998)
[Address] EAT @explorer.exe (GdipSetStringFormatMeasurableCharacterRanges) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE84E8)
[Address] EAT @explorer.exe (GdipSetStringFormatTabStops) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8728)
[Address] EAT @explorer.exe (GdipSetStringFormatTrimming) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE82F8)
[Address] EAT @explorer.exe (GdipSetTextContrast) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF1264)
[Address] EAT @explorer.exe (GdipSetTextRenderingHint) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF130C)
[Address] EAT @explorer.exe (GdipSetTextureTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF89B4)
[Address] EAT @explorer.exe (GdipSetTextureWrapMode) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACDF10)
[Address] EAT @explorer.exe (GdipSetWorldTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACD014)
[Address] EAT @explorer.exe (GdipShearMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC19C)
[Address] EAT @explorer.exe (GdipStartPathFigure) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFFAC8)
[Address] EAT @explorer.exe (GdipStringFormatGetGenericDefault) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8DF8)
[Address] EAT @explorer.exe (GdipStringFormatGetGenericTypographic) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE8D90)
[Address] EAT @explorer.exe (GdipTestControl) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AE81EC)
[Address] EAT @explorer.exe (GdipTransformMatrixPoints) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACC110)
[Address] EAT @explorer.exe (GdipTransformMatrixPointsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACBFE4)
[Address] EAT @explorer.exe (GdipTransformPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFD804)
[Address] EAT @explorer.exe (GdipTransformPoints) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF098C)
[Address] EAT @explorer.exe (GdipTransformPointsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF07AC)
[Address] EAT @explorer.exe (GdipTransformRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB374)
[Address] EAT @explorer.exe (GdipTranslateClip) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEBA4C)
[Address] EAT @explorer.exe (GdipTranslateClipI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AEB9EC)
[Address] EAT @explorer.exe (GdipTranslateLineTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF884C)
[Address] EAT @explorer.exe (GdipTranslateMatrix) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97ACA68C)
[Address] EAT @explorer.exe (GdipTranslatePathGradientTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF884C)
[Address] EAT @explorer.exe (GdipTranslatePenTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF5FB8)
[Address] EAT @explorer.exe (GdipTranslateRegion) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB4BC)
[Address] EAT @explorer.exe (GdipTranslateRegionI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFB45C)
[Address] EAT @explorer.exe (GdipTranslateTextureTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AF884C)
[Address] EAT @explorer.exe (GdipTranslateWorldTransform) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AA7EEC)
[Address] EAT @explorer.exe (GdipVectorTransformMatrixPoints) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFC038)
[Address] EAT @explorer.exe (GdipVectorTransformMatrixPointsI) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFBE78)
[Address] EAT @explorer.exe (GdipWarpPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFD914)
[Address] EAT @explorer.exe (GdipWidenPath) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFDA68)
[Address] EAT @explorer.exe (GdipWindingModeOutline) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97AFDBD0)
[Address] EAT @explorer.exe (GdiplusNotificationHook) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97B00510)
[Address] EAT @explorer.exe (GdiplusNotificationUnhook) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97B004AC)
[Address] EAT @explorer.exe (GdiplusShutdown) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A888CC)
[Address] EAT @explorer.exe (GdiplusStartup) : MSIMG32.dll -> HOOKED (C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\gdiplus.dll @ 0x97A832B0)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKX-001CA0 ATA Device +++++
--- User ---
[MBR] 45280c660fc521f8b91f4c2a98ab4e46
[BSP] bb36c154a8d7dc892476e6b59f68a683 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476937 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) WDC WD5000AAKX-001CA0 ATA Device +++++
--- User ---
[MBR] a64f72a730ba0a76e29201ab00380b13
[BSP] 53012f80407cf6cc164d4d0160e63be2 : Empty MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 29999 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 61442048 | Size: 436937 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 956289024 | Size: 10000 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04062014_202320.txt >>

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

[mmmartin]

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8 (6.2.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : martin [Práva správce]
Mód : Odebrat -- Datum : 04/07/2014 17:13:13
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
[Address] EAT @explorer.exe (BiChangeApplicationStateForPackageName) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932EAB80)
[Address] EAT @explorer.exe (BiChangeSessionState) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x933053D8)
[Address] EAT @explorer.exe (BiNotifyNewSession) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x93306F0C)
[Address] EAT @explorer.exe (BiPtActivateWorkItem) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BCE0)
[Address] EAT @explorer.exe (BiPtAssociateActivationProxy) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9330A7EC)
[Address] EAT @explorer.exe (BiPtAssociateApplicationExtensionClass) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BBD0)
[Address] EAT @explorer.exe (BiPtCreateEventForPackageName) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BAC0)
[Address] EAT @explorer.exe (BiPtDeleteEvent) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BA50)
[Address] EAT @explorer.exe (BiPtDisassociateWorkItem) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B9B0)
[Address] EAT @explorer.exe (BiPtEnumerateBrokeredEvents) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x93306A70)
[Address] EAT @explorer.exe (BiPtEnumerateWorkItemsForPackageName) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B8C0)
[Address] EAT @explorer.exe (BiPtFreeMemory) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E5FE0)
[Address] EAT @explorer.exe (BiPtQueryBrokeredEvent) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E5DF0)
[Address] EAT @explorer.exe (BiPtQuerySystemStateBroadcastChannels) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x93306A0C)
[Address] EAT @explorer.exe (BiPtQueryWorkItem) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B804)
[Address] EAT @explorer.exe (BiPtSignalEvent) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B738)
[Address] EAT @explorer.exe (BiPtSignalMultipleEvents) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B660)
[Address] EAT @explorer.exe (BiResetActiveSessionForPackage) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B57C)
[Address] EAT @explorer.exe (BiSetActiveSessionForPackage) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B4E0)
[Address] EAT @explorer.exe (BiUpdateLockScreenApplications) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335B430)
[Address] EAT @explorer.exe (DllCanUnloadNow) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E1340)
[Address] EAT @explorer.exe (DllGetActivationFactory) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E2F60)
[Address] EAT @explorer.exe (DllGetClassObject) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E2110)
[Address] EAT @explorer.exe (PsmBlockAppStateChangeCompletion) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BDD4)
[Address] EAT @explorer.exe (PsmIsProcessInApplication) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932F7D60)
[Address] EAT @explorer.exe (PsmQueryApplicationInformation) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E73F0)
[Address] EAT @explorer.exe (PsmQueryApplicationList) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E2770)
[Address] EAT @explorer.exe (PsmQueryCurrentAppState) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BD70)
[Address] EAT @explorer.exe (PsmQueryProcessList) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E24F0)
[Address] EAT @explorer.exe (PsmRegisterAppStateChangeNotification) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932ECF00)
[Address] EAT @explorer.exe (PsmRegisterApplicationNotification) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932E71E0)
[Address] EAT @explorer.exe (PsmSetApplicationState) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932EA870)
[Address] EAT @explorer.exe (PsmShutdownApplication) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BEC0)
[Address] EAT @explorer.exe (PsmUnblockAppStateChangeCompletion) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BE0C)
[Address] EAT @explorer.exe (PsmUnregisterAppStateChangeNotification) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x932F0A68)
[Address] EAT @explorer.exe (PsmWaitForAppResume) : actxprxy.dll -> HOOKED (C:\Windows\System32\twinapi.dll @ 0x9335BE5C)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKX-001CA0 ATA Device +++++
--- User ---
[MBR] 45280c660fc521f8b91f4c2a98ab4e46
[BSP] bb36c154a8d7dc892476e6b59f68a683 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476937 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) WDC WD5000AAKX-001CA0 ATA Device +++++
--- User ---
[MBR] a64f72a730ba0a76e29201ab00380b13
[BSP] 53012f80407cf6cc164d4d0160e63be2 : Empty MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 29999 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 61442048 | Size: 436937 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 956289024 | Size: 10000 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_04072014_171313.txt >>
RKreport[0]_D_04072014_170927.txt;RKreport[0]_S_04062014_202320.txt;RKreport[0]_S_04072014_170903.txt
RKreport[0]_S_04072014_171301.txt

[mmmartin]

17:21:54.0964 0x1b48 TDSS rootkit removing tool 3.0.0.30 Apr 7 2014 15:39:12
17:22:05.0806 0x1b48 ============================================================
17:22:05.0806 0x1b48 Current date / time: 2014/04/07 17:22:05.0806
17:22:05.0806 0x1b48 SystemInfo:
17:22:05.0806 0x1b48
17:22:05.0806 0x1b48 OS Version: 6.2.9200 ServicePack: 0.0
17:22:05.0806 0x1b48 Product type: Workstation
17:22:05.0806 0x1b48 ComputerName: MARTIN-PC
17:22:05.0806 0x1b48 UserName: martin
17:22:05.0806 0x1b48 Windows directory: C:\WINDOWS
17:22:05.0806 0x1b48 System windows directory: C:\WINDOWS
17:22:05.0806 0x1b48 Running under WOW64
17:22:05.0806 0x1b48 Processor architecture: Intel x64
17:22:05.0806 0x1b48 Number of processors: 4
17:22:05.0806 0x1b48 Page size: 0x1000
17:22:05.0806 0x1b48 Boot type: Normal boot
17:22:05.0806 0x1b48 ============================================================
17:22:06.0477 0x1b48 KLMD registered as C:\WINDOWS\system32\drivers\81724893.sys
17:22:06.0539 0x1b48 System UUID: {619A8D75-7158-4DD8-9DEC-1E5AA91E9DB8}
17:22:06.0976 0x1b48 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:22:06.0976 0x1b48 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:22:06.0976 0x1b48 ============================================================
17:22:06.0976 0x1b48 \Device\Harddisk0\DR0:
17:22:06.0976 0x1b48 MBR partitions:
17:22:06.0976 0x1b48 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384D41
17:22:06.0976 0x1b48 \Device\Harddisk1\DR1:
17:22:06.0976 0x1b48 MBR partitions:
17:22:06.0976 0x1b48 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A97800
17:22:06.0976 0x1b48 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x3A98800, BlocksNum 0x35564800
17:22:06.0976 0x1b48 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x38FFD000, BlocksNum 0x1388000
17:22:06.0976 0x1b48 ============================================================
17:22:06.0991 0x1b48 C: <-> \Device\Harddisk0\DR0\Partition1
17:22:07.0007 0x1b48 F: <-> \Device\Harddisk1\DR1\Partition2
17:22:07.0023 0x1b48 G: <-> \Device\Harddisk1\DR1\Partition1
17:22:07.0069 0x1b48 S: <-> \Device\Harddisk1\DR1\Partition3
17:22:07.0069 0x1b48 ============================================================
17:22:07.0069 0x1b48 Initialize success
17:22:07.0069 0x1b48 ============================================================
17:22:09.0971 0x1150 ============================================================
17:22:09.0971 0x1150 Scan started
17:22:09.0971 0x1150 Mode: Manual;
17:22:09.0971 0x1150 ============================================================
17:22:09.0971 0x1150 KSN ping started
17:22:12.0311 0x1150 KSN ping finished: true
17:22:12.0842 0x1150 ================ Scan system memory ========================
17:22:12.0842 0x1150 System memory - ok
17:22:12.0842 0x1150 ================ Scan services =============================
17:22:13.0044 0x1150 [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
17:22:13.0060 0x1150 1394ohci - ok
17:22:13.0075 0x1150 [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
17:22:13.0075 0x1150 3ware - ok
17:22:13.0138 0x1150 [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
17:22:13.0138 0x1150 ACDaemon - ok
17:22:13.0185 0x1150 [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
17:22:13.0200 0x1150 ACPI - ok
17:22:13.0216 0x1150 [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
17:22:13.0216 0x1150 acpiex - ok
17:22:13.0216 0x1150 [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
17:22:13.0216 0x1150 acpipagr - ok
17:22:13.0231 0x1150 [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
17:22:13.0231 0x1150 AcpiPmi - ok
17:22:13.0247 0x1150 [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
17:22:13.0247 0x1150 acpitime - ok
17:22:13.0263 0x1150 [ 4AE327C9C375D985FF2A2AAB92765218, 0BE842E0682413222F5432891749B5C754CF6B3BDCED3CB3F39FFD245BE66F26 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
17:22:13.0263 0x1150 Adobe LM Service - ok
17:22:13.0325 0x1150 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:22:13.0325 0x1150 AdobeARMservice - ok
17:22:13.0356 0x1150 [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx C:\WINDOWS\system32\drivers\adp94xx.sys
17:22:13.0356 0x1150 adp94xx - ok
17:22:13.0388 0x1150 [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci C:\WINDOWS\system32\drivers\adpahci.sys
17:22:13.0388 0x1150 adpahci - ok
17:22:13.0419 0x1150 [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320 C:\WINDOWS\system32\drivers\adpu320.sys
17:22:13.0419 0x1150 adpu320 - ok
17:22:13.0450 0x1150 [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
17:22:13.0465 0x1150 AeLookupSvc - ok
17:22:13.0497 0x1150 [ 7C0E0EDF18D6CC565D7BFBB451709FA5, 47C21CD9D87B5C1B5EB14F6166B5E3349B1A6F10501E63CCED8D52A9FE22765D ] AFD C:\WINDOWS\system32\drivers\afd.sys
17:22:13.0497 0x1150 AFD - ok
17:22:13.0528 0x1150 [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
17:22:13.0528 0x1150 agp440 - ok
17:22:13.0559 0x1150 [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG C:\WINDOWS\System32\alg.exe
17:22:13.0559 0x1150 ALG - ok
17:22:13.0575 0x1150 [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
17:22:13.0590 0x1150 AllUserInstallAgent - ok
17:22:13.0606 0x1150 [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
17:22:13.0606 0x1150 AmdK8 - ok
17:22:13.0934 0x1150 [ 8DC532B5BF820E48194C6AFC8862FCBC, AA8040A2EC9004FBED4B94166B2DD5A4F5BC835EBADD6199651C856A695AA3E1 ] amdkmdag C:\WINDOWS\system32\DRIVERS\atikmdag.sys
17:22:14.0136 0x1150 amdkmdag - ok
17:22:14.0183 0x1150 [ AA48FEABA50C2DED9C485DFDBA044E40, AE52933B85494F51E4F1524489BEAC4C16F80D09BC8974D97F792D94EAD2A231 ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
17:22:14.0183 0x1150 amdkmdap - ok
17:22:14.0214 0x1150 [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
17:22:14.0214 0x1150 AmdPPM - ok
17:22:14.0230 0x1150 [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
17:22:14.0230 0x1150 amdsata - ok
17:22:14.0261 0x1150 [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
17:22:14.0261 0x1150 amdsbs - ok
17:22:14.0277 0x1150 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
17:22:14.0292 0x1150 amdxata - ok
17:22:14.0324 0x1150 [ 823F34D1DEF120A657BB7529ABF4461F, C56D6614F6B3DA13DF7F6AC6B70ACA39D1DB146F7324CF96029CA038C3063DB3 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
17:22:14.0324 0x1150 AppHostSvc - ok
17:22:14.0339 0x1150 [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID C:\WINDOWS\system32\drivers\appid.sys
17:22:14.0339 0x1150 AppID - ok
17:22:14.0355 0x1150 [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
17:22:14.0355 0x1150 AppIDSvc - ok
17:22:14.0386 0x1150 [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo C:\WINDOWS\System32\appinfo.dll
17:22:14.0386 0x1150 Appinfo - ok
17:22:14.0402 0x1150 [ 2D14788C5D0836292BEB27BBE109BE56, D032FDBD9E1708F77348655DE00DB395E38EB27A7EC3FB2EF3BA07D22CBC1402 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
17:22:14.0417 0x1150 AppMgmt - ok
17:22:14.0433 0x1150 [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc C:\WINDOWS\system32\drivers\arc.sys
17:22:14.0433 0x1150 arc - ok
17:22:14.0464 0x1150 [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
17:22:14.0464 0x1150 arcsas - ok
17:22:14.0558 0x1150 [ 108FB6DDB69E537A2EA53F425363FAE5, B12A9F5338D39805E08A44A335FF7AA77F2266F535A2F5C8412CC746C75E5B1D ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:22:14.0558 0x1150 aspnet_state - ok
17:22:14.0573 0x1150 [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:22:14.0573 0x1150 AsyncMac - ok
17:22:14.0573 0x1150 [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
17:22:14.0589 0x1150 atapi - ok
17:22:14.0604 0x1150 [ AE8EE29474663398737DBC146D53D440, F03F20A94E51ECC651AE32C1D024BC8468D9683DF5CBE70DF5268B0E7F7AE3DB ] AthDfu C:\WINDOWS\System32\Drivers\AthDfu.sys
17:22:14.0604 0x1150 AthDfu - ok
17:22:14.0636 0x1150 [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
17:22:14.0636 0x1150 AudioEndpointBuilder - ok
17:22:14.0682 0x1150 [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
17:22:14.0698 0x1150 Audiosrv - ok
17:22:14.0729 0x1150 [ 4EB2E8EE8BA47B58E08B67139C31CB41, 196F759A2BC3E978C3FDB1E37E0D40D56D43CB0004D5333E787CD4727A46F06C ] Avgboota C:\WINDOWS\system32\DRIVERS\avgboota.sys
17:22:14.0729 0x1150 Avgboota - ok
17:22:14.0760 0x1150 [ BE5047191368D2C014202AB2775768B7, 5EC5B88B7FA7F9A9A6A665FD8638A3DF8030D6CD72C15C53CC3C34A88C1B9B27 ] Avgdiska C:\WINDOWS\system32\DRIVERS\avgdiska.sys
17:22:14.0760 0x1150 Avgdiska - ok
17:22:14.0776 0x1150 [ CA10D51653068DB6A0ADEEDDC4946C47, 6E731B28C38ED2BA48CF4855EBBF8B548D45C8DB8ABD9521E5516227CA68072B ] Avgfwfd C:\WINDOWS\system32\DRIVERS\avgfwd6a.sys
17:22:14.0776 0x1150 Avgfwfd - ok
17:22:14.0854 0x1150 [ 1E68487EF81995767905DE628866215B, 2E2D0EAFFD10387871E7B5D7D401A3A2D9B3C998817E6D61D59494700DA72349 ] avgfws C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
17:22:14.0885 0x1150 avgfws - ok
17:22:14.0994 0x1150 [ 9D5EA7BD5E29F404CD158AED17B40A15, BC38F90AD8BBB51C27D9D325E400DF10B8A8BE34A497A7207F2E73E46E9AB3EE ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
17:22:15.0057 0x1150 AVGIDSAgent - ok
17:22:15.0088 0x1150 [ EE48CA8AB25E2B0EE3D3E5A463C5A37E, 06A0AF4CB8D3715701ABD272E42F7CCF406C61AF838F5F53A7F6630D4A600905 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdrivera.sys
17:22:15.0104 0x1150 AVGIDSDriver - ok
17:22:15.0119 0x1150 [ 494D668B4CB866A1D6835E5F01B13EF1, A2989DB82F31F9B30E4DC1F814BD0D7E286B33DB033C63796E2020BD18648EF3 ] AVGIDSHA C:\WINDOWS\system32\DRIVERS\avgidsha.sys
17:22:15.0135 0x1150 AVGIDSHA - ok
17:22:15.0150 0x1150 [ 4BE8BB177B4C2BC3564845EF6D1073F1, 4ACA54EA54F5ABA96A73BD83C0C5A83C37090FEB7CBE67AE94E9CD3E364931C8 ] Avgldx64 C:\WINDOWS\system32\DRIVERS\avgldx64.sys
17:22:15.0150 0x1150 Avgldx64 - ok
17:22:15.0182 0x1150 [ D3772CC086FB81F76B5A82C85E1C7C8E, B1BEFD7AC658F28AECEF5468F5815504BDDC8A4203207B6F0CA53C5B216F782D ] Avgloga C:\WINDOWS\system32\DRIVERS\avgloga.sys
17:22:15.0182 0x1150 Avgloga - ok
17:22:15.0213 0x1150 [ A0BCE5DC2C1F1EE5C1CA19A33375AC23, 517663AEDD7A45607E17910DE60B2847E521472F9C0AB56034617BE2F351DE8D ] Avgmfx64 C:\WINDOWS\system32\DRIVERS\avgmfx64.sys
17:22:15.0213 0x1150 Avgmfx64 - ok
17:22:15.0228 0x1150 [ 12FAAF366975B2BF2E93F1866C0E480D, 559480A1434E6805CF4F3DB5352E98387053194BB7B0DB18099B53D306D9951D ] Avgrkx64 C:\WINDOWS\system32\DRIVERS\avgrkx64.sys
17:22:15.0228 0x1150 Avgrkx64 - ok
17:22:15.0260 0x1150 [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
17:22:15.0275 0x1150 avgwd - ok
17:22:15.0306 0x1150 [ 94DCBB875A66685C934EE6E3D71A3452, 7C58734C7A54EF15801CA5E19F272A4CCE8D016172877F1EBFC887C72ABB03BD ] Avgwfpa C:\WINDOWS\system32\DRIVERS\avgwfpa.sys
17:22:15.0322 0x1150 Avgwfpa - ok
17:22:15.0338 0x1150 [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
17:22:15.0338 0x1150 AxInstSV - ok
17:22:15.0369 0x1150 [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
17:22:15.0369 0x1150 b06bdrv - ok
17:22:15.0400 0x1150 [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
17:22:15.0400 0x1150 BasicDisplay - ok
17:22:15.0416 0x1150 [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
17:22:15.0416 0x1150 BasicRender - ok
17:22:15.0447 0x1150 [ 656B7660FB8FD2D3D015172486A2DB04, CF2F71EAE9413346F509E4C8D25199C040485CEBDD7AD3967889D9CE06479881 ] bcbtums C:\WINDOWS\system32\drivers\bcbtums.sys
17:22:15.0447 0x1150 bcbtums - ok
17:22:15.0525 0x1150 [ 47F0FE026652F601F367ECE2DFFCFC40, 93986523D33FEF323727A15BF5FB7BA7472CEBC1E185917897AF212E4EA9302D ] BcmBtRSupport C:\WINDOWS\system32\BtwRSupportService.exe
17:22:15.0556 0x1150 BcmBtRSupport - ok
17:22:15.0603 0x1150 [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC C:\WINDOWS\System32\bdesvc.dll
17:22:15.0618 0x1150 BDESVC - ok
17:22:15.0634 0x1150 [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:22:15.0634 0x1150 Beep - ok
17:22:15.0665 0x1150 [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE C:\WINDOWS\System32\bfe.dll
17:22:15.0696 0x1150 BFE - ok
17:22:15.0743 0x1150 [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS C:\WINDOWS\System32\qmgr.dll
17:22:15.0774 0x1150 BITS - ok
17:22:15.0790 0x1150 [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
17:22:15.0790 0x1150 bowser - ok
17:22:15.0806 0x1150 [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
17:22:15.0806 0x1150 BrokerInfrastructure - ok
17:22:15.0837 0x1150 [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser C:\WINDOWS\System32\browser.dll
17:22:15.0837 0x1150 Browser - ok
17:22:15.0868 0x1150 [ D4FA5A33E345CFB6D635579A8EE02399, F87E622575D495AA458683C99C427508FCF14349EDBE0FE03F6AA0155E77C111 ] BthA2DP C:\WINDOWS\system32\drivers\BthA2DP.sys
17:22:15.0868 0x1150 BthA2DP - ok
17:22:15.0899 0x1150 [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
17:22:15.0899 0x1150 BthAvrcpTg - ok
17:22:15.0915 0x1150 [ A8B20D852B07AE19A13B5D47EC4E4C3B, 86571C9E2BA15BB169CAB2D24C4D0598154C02FD173638CAFC685A7F6B09472D ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
17:22:15.0915 0x1150 BthEnum - ok
17:22:15.0946 0x1150 [ E695E706C9E11DD5201605F1F6B4505C, 994DBB540644CBA25992C63E639A8551E066DEC1648139E461892F306F77F101 ] BthHFAud C:\WINDOWS\System32\drivers\BthHfAud.sys
17:22:15.0946 0x1150 BthHFAud - ok
17:22:15.0962 0x1150 [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
17:22:15.0962 0x1150 BthHFEnum - ok
17:22:15.0993 0x1150 [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
17:22:15.0993 0x1150 bthhfhid - ok
17:22:16.0008 0x1150 [ 447A41162B74E345C8E80A681867C653, 415A54506FFC37E242F44886ADCF70C35433AD056CCBACA818F24500064FD17C ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
17:22:16.0024 0x1150 BthHFSrv - ok
17:22:16.0055 0x1150 [ 42201C346F0B8C458E1E9CDE04D68A2C, 6168FD0D10CD06B00B5C79D5D2B5C353AAC22FD99CE8D417DDBA33ED63CFB8BF ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
17:22:16.0055 0x1150 BthLEEnum - ok
17:22:16.0086 0x1150 [ EB4CBCB3288233CD964716D0A5E1CFC5, 0CE67B2D7855117B924ACC3A2979CE12F8DE45227B37AF95F9ABCC7406AD1EC3 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
17:22:16.0086 0x1150 BTHMODEM - ok
17:22:16.0102 0x1150 [ 091BB978E9504D0AD14586929431A957, ACED02B879026A228E35F40847C210BC30A5AFC948FFE922DB21663E4A8DFF1D ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
17:22:16.0118 0x1150 BthPan - ok
17:22:16.0164 0x1150 [ 13795CAA34239D97A7211E7F9D96E012, C4F3402B063A7CFCE386D1AE9255975A199164BA9E7DCDB6129725213A0642B1 ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
17:22:16.0180 0x1150 BTHPORT - ok
17:22:16.0196 0x1150 [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv C:\WINDOWS\system32\bthserv.dll
17:22:16.0211 0x1150 bthserv - ok
17:22:16.0211 0x1150 [ 1F715957F5236D30B6020A19A4271F6A, C06B637C2C6919E2DE1055AE249AE3EAF7B4890799F22BF5757CC10CEF145043 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
17:22:16.0211 0x1150 BTHUSB - ok
17:22:16.0242 0x1150 [ 183E8A570E03F14C357F0948D2F5E2FE, 6DA6D837EFBFB8C825D58E7B4346FEF4D573261F7D6984BD789027C236D656CA ] btwampfl C:\WINDOWS\system32\drivers\btwampfl.sys
17:22:16.0242 0x1150 btwampfl - ok
17:22:16.0258 0x1150 [ E453A259D395359EC30D0659C505D810, 7263DD22178ADBC124BA7BF284161AD42105B648D4B2114CC070C96A01DBDA9B ] btwaudio C:\WINDOWS\system32\drivers\btwaudio.sys
17:22:16.0258 0x1150 btwaudio - ok
17:22:16.0274 0x1150 [ 6B126F6A186C09116026DE56CD75EAD2, DA018681AA4A8C76FD73FC5826AE4E48E14B53AE9027F65B1ADF67DB69909E14 ] btwavdt C:\WINDOWS\system32\drivers\btwavdt.sys
17:22:16.0274 0x1150 btwavdt - ok
17:22:16.0367 0x1150 [ 942028F6758269D56A59AE2F8A43B5E5, FF561E76AFA6AE63E34209CDD6A3FD73E0550F5F602C6F1C001FFA649C364B5E ] btwdins C:\Program Files\ASUS\Bluetooth Software\btwdins.exe
17:22:16.0383 0x1150 btwdins - ok
17:22:16.0398 0x1150 [ C3C8974D99F976C927165363855690CD, 2B73E11FE341DE581CFF655E58C5671B83F4331529C30DADCAA9B6BE615D5E1F ] btwl2cap C:\WINDOWS\system32\DRIVERS\btwl2cap.sys
17:22:16.0398 0x1150 btwl2cap - ok
17:22:16.0414 0x1150 [ AFF619C44E3624A9891830606604B480, C300EC64BB04D6EB019802D5433C1D1BD7A6EC0E5A4AFF5CBB41E3990429804C ] btwrchid C:\WINDOWS\System32\drivers\btwrchid.sys
17:22:16.0414 0x1150 btwrchid - ok
17:22:16.0445 0x1150 [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
17:22:16.0445 0x1150 cdfs - ok
17:22:16.0461 0x1150 [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
17:22:16.0476 0x1150 cdrom - ok
17:22:16.0492 0x1150 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
17:22:16.0508 0x1150 CertPropSvc - ok
17:22:16.0523 0x1150 [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass C:\WINDOWS\System32\drivers\circlass.sys
17:22:16.0523 0x1150 circlass - ok
17:22:16.0539 0x1150 [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
17:22:16.0554 0x1150 CLFS - ok
17:22:16.0586 0x1150 [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
17:22:16.0586 0x1150 CmBatt - ok
17:22:16.0632 0x1150 [ E708BFF0473EC6B271EA46B65B16CA56, 2B4C661F7C5A4395CA4204122A1C3C8AA766B56C3D01CD8BAAFA18F71FC7B591 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
17:22:16.0648 0x1150 CNG - ok
17:22:16.0664 0x1150 [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
17:22:16.0664 0x1150 CompositeBus - ok
17:22:16.0664 0x1150 COMSysApp - ok
17:22:16.0679 0x1150 [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
17:22:16.0679 0x1150 condrv - ok
17:22:16.0710 0x1150 [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
17:22:16.0710 0x1150 Creative Audio Engine Licensing Service - ok
17:22:16.0742 0x1150 [ D03466C36EF0E5C7694FF38B45271D9D, 367E0C1F0C49C31F26EC6A8828FE5727D70C637FD8C4213D10E43C80A0EA259E ] Creative Media Toolbox 6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe
17:22:16.0742 0x1150 Creative Media Toolbox 6 Licensing Service - ok
17:22:16.0773 0x1150 [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
17:22:16.0773 0x1150 CryptSvc - ok
17:22:16.0820 0x1150 [ F2C69C3D98249DE14D4B2832516D4FD5, 5F622A61A99202802B35532036CFCFDFB1FDEC32465BA8CCAB4C4FAFA336FC2A ] CSC C:\WINDOWS\system32\drivers\csc.sys
17:22:16.0835 0x1150 CSC - ok
17:22:16.0882 0x1150 [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4, 7F6F888CF4D7EF93144A791891E41858F7C0CDDC0B65ED09B9CD55EE3734FCCF ] CscService C:\WINDOWS\System32\cscsvc.dll
17:22:16.0898 0x1150 CscService - ok
17:22:16.0960 0x1150 [ 07BA6D17E66879018B30B6C3F976EBED, 1759CE25519358A47E1B1FA02A415DB5D3F6B511AD3820D0AE8A1533B5DC83CD ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:22:16.0976 0x1150 CTAudSvcService - ok
17:22:16.0991 0x1150 [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam C:\WINDOWS\system32\drivers\dam.sys
17:22:16.0991 0x1150 dam - ok
17:22:17.0038 0x1150 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:22:17.0054 0x1150 DcomLaunch - ok
17:22:17.0069 0x1150 [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc C:\WINDOWS\System32\defragsvc.dll
17:22:17.0069 0x1150 defragsvc - ok
17:22:17.0100 0x1150 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\WINDOWS\system32\das.dll
17:22:17.0100 0x1150 DeviceAssociationService - ok
17:22:17.0147 0x1150 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
17:22:17.0163 0x1150 DeviceInstall - ok
17:22:17.0194 0x1150 [ 431141C6859990824D17F71C30A78728, 448B3DC20C8FDD5B66217E0E01DBCC4904F94BDA0826F109D139DDD2C2D7FBF2 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
17:22:17.0194 0x1150 Dfsc - ok
17:22:17.0210 0x1150 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
17:22:17.0210 0x1150 dg_ssudbus - ok
17:22:17.0272 0x1150 [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
17:22:17.0288 0x1150 Dhcp - ok
17:22:17.0303 0x1150 [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache C:\WINDOWS\system32\drivers\discache.sys
17:22:17.0303 0x1150 discache - ok
17:22:17.0334 0x1150 [ AE3786294CC246A5403783E1B86A0168, 29A7B4B490CBB16DAEF5D67D0A58A2577CF3FEE8F889484DB867F6913D9D2A28 ] disk C:\WINDOWS\system32\drivers\disk.sys
17:22:17.0334 0x1150 disk - ok
17:22:17.0350 0x1150 [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
17:22:17.0350 0x1150 dmvsc - ok
17:22:17.0381 0x1150 [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:22:17.0381 0x1150 Dnscache - ok
17:22:17.0412 0x1150 [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc C:\WINDOWS\System32\dot3svc.dll
17:22:17.0428 0x1150 dot3svc - ok
17:22:17.0444 0x1150 [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS C:\WINDOWS\system32\dps.dll
17:22:17.0444 0x1150 DPS - ok
17:22:17.0475 0x1150 [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
17:22:17.0475 0x1150 drmkaud - ok
17:22:17.0506 0x1150 [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
17:22:17.0506 0x1150 DsmSvc - ok
17:22:17.0568 0x1150 [ E6AF4DF1817953D73C519B17CF849756, 26A90EB368A3F572086F223ABED87B8FC6F998AE401C9E52BEB5EE76AB052702 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
17:22:17.0600 0x1150 DXGKrnl - ok
17:22:17.0615 0x1150 [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
17:22:17.0631 0x1150 Eaphost - ok
17:22:17.0740 0x1150 [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
17:22:17.0802 0x1150 ebdrv - ok
17:22:17.0834 0x1150 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] EFS C:\WINDOWS\System32\lsass.exe
17:22:17.0834 0x1150 EFS - ok
17:22:17.0865 0x1150 [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
17:22:17.0865 0x1150 EhStorClass - ok
17:22:17.0880 0x1150 [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
17:22:17.0880 0x1150 EhStorTcgDrv - ok
17:22:17.0896 0x1150 [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
17:22:17.0896 0x1150 ErrDev - ok
17:22:17.0927 0x1150 [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem C:\WINDOWS\system32\es.dll
17:22:17.0943 0x1150 EventSystem - ok
17:22:17.0958 0x1150 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat C:\WINDOWS\system32\drivers\exfat.sys
17:22:17.0974 0x1150 exfat - ok
17:22:17.0990 0x1150 [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
17:22:17.0990 0x1150 fastfat - ok
17:22:18.0021 0x1150 [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax C:\WINDOWS\system32\fxssvc.exe
17:22:18.0036 0x1150 Fax - ok
17:22:18.0052 0x1150 [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
17:22:18.0052 0x1150 fdc - ok
17:22:18.0083 0x1150 [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
17:22:18.0083 0x1150 fdPHost - ok
17:22:18.0099 0x1150 [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
17:22:18.0099 0x1150 FDResPub - ok
17:22:18.0114 0x1150 [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc C:\WINDOWS\system32\fhsvc.dll
17:22:18.0114 0x1150 fhsvc - ok
17:22:18.0146 0x1150 [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
17:22:18.0146 0x1150 FileInfo - ok
17:22:18.0161 0x1150 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
17:22:18.0161 0x1150 Filetrace - ok
17:22:18.0177 0x1150 [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
17:22:18.0177 0x1150 flpydisk - ok
17:22:18.0192 0x1150 [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
17:22:18.0192 0x1150 FltMgr - ok
17:22:18.0255 0x1150 [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache C:\WINDOWS\system32\FntCache.dll
17:22:18.0302 0x1150 FontCache - ok
17:22:18.0333 0x1150 [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:22:18.0333 0x1150 FontCache3.0.0.0 - ok
17:22:18.0348 0x1150 [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
17:22:18.0348 0x1150 FsDepends - ok
17:22:18.0380 0x1150 [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr C:\WINDOWS\system32\DRIVERS\fssfltr.sys
17:22:18.0380 0x1150 fssfltr - ok
17:22:18.0380 0x1150 [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:22:18.0380 0x1150 Fs_Rec - ok
17:22:18.0426 0x1150 [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
17:22:18.0426 0x1150 fvevol - ok
17:22:18.0458 0x1150 [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
17:22:18.0458 0x1150 FxPPM - ok
17:22:18.0473 0x1150 [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
17:22:18.0473 0x1150 gagp30kx - ok
17:22:18.0582 0x1150 [ C881D138459165D6E4347ADB00272E29, D63C9CC6E741560A646C60067AA4D1CA2CF2DB75ED94340ABE3B38CD4D25E54B ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
17:22:18.0582 0x1150 Garmin Core Update Service - ok
17:22:18.0614 0x1150 [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
17:22:18.0614 0x1150 gencounter - ok
17:22:18.0629 0x1150 [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
17:22:18.0645 0x1150 GPIOClx0101 - ok
17:22:18.0707 0x1150 [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
17:22:18.0738 0x1150 gpsvc - ok
17:22:18.0785 0x1150 [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
17:22:18.0785 0x1150 HdAudAddService - ok
17:22:18.0816 0x1150 [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
17:22:18.0816 0x1150 HDAudBus - ok
17:22:18.0848 0x1150 [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
17:22:18.0848 0x1150 HidBatt - ok
17:22:18.0879 0x1150 [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
17:22:18.0879 0x1150 HidBth - ok
17:22:18.0894 0x1150 [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
17:22:18.0894 0x1150 hidi2c - ok
17:22:18.0910 0x1150 [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
17:22:18.0910 0x1150 HidIr - ok
17:22:18.0926 0x1150 [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv C:\WINDOWS\System32\hidserv.dll
17:22:18.0926 0x1150 hidserv - ok
17:22:18.0957 0x1150 [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
17:22:18.0957 0x1150 HidUsb - ok
17:22:18.0972 0x1150 [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
17:22:18.0972 0x1150 hkmsvc - ok
17:22:19.0004 0x1150 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
17:22:19.0019 0x1150 HomeGroupListener - ok
17:22:19.0050 0x1150 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
17:22:19.0050 0x1150 HomeGroupProvider - ok
17:22:19.0066 0x1150 [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
17:22:19.0066 0x1150 HpSAMD - ok
17:22:19.0113 0x1150 [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
17:22:19.0128 0x1150 HTTP - ok
17:22:19.0144 0x1150 [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
17:22:19.0144 0x1150 hwpolicy - ok
17:22:19.0160 0x1150 [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
17:22:19.0160 0x1150 hyperkbd - ok
17:22:19.0175 0x1150 [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
17:22:19.0175 0x1150 HyperVideo - ok
17:22:19.0191 0x1150 [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
17:22:19.0191 0x1150 i8042prt - ok
17:22:19.0222 0x1150 [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
17:22:19.0222 0x1150 iaStorV - ok
17:22:19.0284 0x1150 [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
17:22:19.0284 0x1150 IDriverT - ok
17:22:19.0300 0x1150 [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp C:\WINDOWS\system32\drivers\iirsp.sys
17:22:19.0300 0x1150 iirsp - ok
17:22:19.0362 0x1150 [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT C:\WINDOWS\System32\ikeext.dll
17:22:19.0394 0x1150 IKEEXT - ok
17:22:19.0409 0x1150 [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
17:22:19.0409 0x1150 intelide - ok
17:22:19.0440 0x1150 [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
17:22:19.0456 0x1150 intelppm - ok
17:22:19.0472 0x1150 [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:22:19.0472 0x1150 IpFilterDriver - ok
17:22:19.0518 0x1150 [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
17:22:19.0534 0x1150 iphlpsvc - ok
17:22:19.0565 0x1150 [ 6E98A046A12AA113F8898AA5D612BD6E, 28816CC1F03F2BFBF099C087C0BB6949E959F44C888DD2D0528FF7ED5D665ECF ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
17:22:19.0565 0x1150 IPMIDRV - ok
17:22:19.0581 0x1150 [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
17:22:19.0581 0x1150 IPNAT - ok
17:22:19.0596 0x1150 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
17:22:19.0596 0x1150 IRENUM - ok
17:22:19.0612 0x1150 [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
17:22:19.0612 0x1150 isapnp - ok
17:22:19.0643 0x1150 [ E6530FD4F61B40F338BF4355A21B9A09, FE9BF039B9901BEC260A69F7C49ACFA9881AD470DCCBA70C7EC36F518DA71702 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
17:22:19.0659 0x1150 iScsiPrt - ok
17:22:19.0674 0x1150 [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
17:22:19.0674 0x1150 kbdclass - ok
17:22:19.0690 0x1150 [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
17:22:19.0690 0x1150 kbdhid - ok
17:22:19.0706 0x1150 [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
17:22:19.0706 0x1150 kdnic - ok
17:22:19.0721 0x1150 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] KeyIso C:\WINDOWS\system32\lsass.exe
17:22:19.0721 0x1150 KeyIso - ok
17:22:19.0784 0x1150 [ 51F6FBE49CD2E8CB5EA96034134D8EDE, 4C316CE527D15F58BAF3E509ABDF62E47EE68B3B46751122AA28138B493CF1B7 ] ksaud C:\WINDOWS\system32\drivers\ksaud.sys
17:22:19.0815 0x1150 ksaud - ok
17:22:19.0846 0x1150 [ DFA480F6DED551464F3A5B959F437800, C07AB6F28A09FCBE11EECAD03B06CEAE1016EC24031FCA0C092639E90FBA84CF ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
17:22:19.0862 0x1150 KSecDD - ok
17:22:19.0893 0x1150 [ 127FB0AAD232BAAD2C9BBACD374F4FC5, 3BC56F6B4374062C96149D69ACE053DF81A278F0361599F5A2F3DB1F76F0AD68 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
17:22:19.0908 0x1150 KSecPkg - ok
17:22:19.0924 0x1150 [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
17:22:19.0924 0x1150 ksthunk - ok
17:22:19.0955 0x1150 [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
17:22:19.0955 0x1150 KtmRm - ok
17:22:19.0986 0x1150 [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
17:22:20.0002 0x1150 LanmanServer - ok
17:22:20.0018 0x1150 [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
17:22:20.0033 0x1150 LanmanWorkstation - ok
17:22:20.0064 0x1150 [ ADA0C09E8AEDC17F11D8E1731986A88A, 1B25D7137E89149BB61FF52BE0259F48E374FC4F7114FAF267AF7A19F3B89BD3 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:22:20.0064 0x1150 LightScribeService - ok
17:22:20.0096 0x1150 [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
17:22:20.0096 0x1150 lltdio - ok
17:22:20.0127 0x1150 [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
17:22:20.0142 0x1150 lltdsvc - ok
17:22:20.0158 0x1150 [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
17:22:20.0158 0x1150 lmhosts - ok
17:22:20.0174 0x1150 [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
17:22:20.0189 0x1150 LSI_SAS - ok
17:22:20.0205 0x1150 [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
17:22:20.0205 0x1150 LSI_SAS2 - ok
17:22:20.0220 0x1150 [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI C:\WINDOWS\system32\drivers\lsi_scsi.sys
17:22:20.0220 0x1150 LSI_SCSI - ok
17:22:20.0236 0x1150 [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
17:22:20.0236 0x1150 LSI_SSS - ok
17:22:20.0267 0x1150 [ A57BA284F5996FFD32DCDBC41A4657DB, 2106B83873A824BC83EF42FAC9DD9A0F741209535A84AE65EA8E786519920043 ] LSM C:\WINDOWS\System32\lsm.dll
17:22:20.0283 0x1150 LSM - ok
17:22:20.0298 0x1150 [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
17:22:20.0298 0x1150 luafv - ok
17:22:20.0330 0x1150 [ A0A527569856B9814E8920F52EBB67F5, 4347277C84B47E4CC048850BDEFB258CFB3B476AA99FD503FD71FBB70FFF5ACF ] LVRS64 C:\WINDOWS\system32\DRIVERS\lvrs64.sys
17:22:20.0330 0x1150 LVRS64 - ok
17:22:20.0486 0x1150 [ 415E344294D1C0D04627B29146F68481, B4A1A05BDF07E8F226A98E51F62BE18BE2C046A084C495BD8A95CABC79FD0614 ] LVUVC64 C:\WINDOWS\system32\DRIVERS\lvuvc64.sys
17:22:20.0564 0x1150 LVUVC64 - ok
17:22:20.0626 0x1150 [ FD5465B876D55534117963FAAA4B9DFC, 63A822A1EEEC42C30CCC9477431E310E3D360489A68BBCD805124681F21C0B6B ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
17:22:20.0626 0x1150 MBAMProtector - ok
17:22:20.0704 0x1150 [ 0E08BDD7326E657D59DB40BAD23D8169, 428C6CCCC0BB540DFD35847776140D60C186B9D2D14F0ACCD1A4D42A8877BD98 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
17:22:20.0735 0x1150 MBAMScheduler - ok
17:22:20.0766 0x1150 [ A8E7F3DB083EB0839DFC1C763CDD2594, BDF416E360A52130B23B029C89E6406A97FB0516C52C7E63B94CAECEEB431A2E ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
17:22:20.0782 0x1150 MBAMService - ok
17:22:20.0798 0x1150 [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas C:\WINDOWS\system32\drivers\megasas.sys
17:22:20.0813 0x1150 megasas - ok
17:22:20.0829 0x1150 [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR C:\WINDOWS\system32\drivers\MegaSR.sys
17:22:20.0844 0x1150 MegaSR - ok
17:22:20.0876 0x1150 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS C:\WINDOWS\system32\mmcss.dll
17:22:20.0876 0x1150 MMCSS - ok
17:22:20.0891 0x1150 [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem C:\WINDOWS\system32\drivers\modem.sys
17:22:20.0891 0x1150 Modem - ok
17:22:20.0907 0x1150 [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
17:22:20.0907 0x1150 monitor - ok
17:22:20.0938 0x1150 [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
17:22:20.0938 0x1150 mouclass - ok
17:22:20.0969 0x1150 [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
17:22:20.0969 0x1150 mouhid - ok
17:22:20.0985 0x1150 [ 89D263DBF08119CE16273991C120D6DD, 9771EDAD266F0E234E71DFB6792F396710E051F2ADCA5CDADEBBD2790D0E6054 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
17:22:20.0985 0x1150 mountmgr - ok
17:22:21.0032 0x1150 [ B1E2F6E26655B6CF15B646C1BC969438, C083BC676EA2B7975F98B31226A9781A1F1913EC961BD6E8E7F53E776883BF2A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:22:21.0032 0x1150 MozillaMaintenance - ok
17:22:21.0063 0x1150 [ 4CCBBD4944777CA100B9A6C2F149A46F, 7FC172FAF8266BFBBBBAD94FD67EA3C1872F5927DC3900A9A54DB2DFE34E7415 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
17:22:21.0063 0x1150 mpsdrv - ok
17:22:21.0110 0x1150 [ 9DE3341BD4E14BC5FADFCAD3019F2D0D, 37E0531EADABC6D4BCC496826651D4D14CF0D10156FF13C11BDE466084B44FF4 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
17:22:21.0125 0x1150 MpsSvc - ok
17:22:21.0156 0x1150 [ 866AF645A3B1F4358C4201CE089839EA, 7838A60F1C97D83E93D7422C5BF6C70A6E8E580B0F47383BB707C6DB84AA661D ] MQAC C:\WINDOWS\system32\drivers\mqac.sys
17:22:21.0156 0x1150 MQAC - ok
17:22:21.0172 0x1150 [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
17:22:21.0188 0x1150 MRxDAV - ok
17:22:21.0219 0x1150 [ 93179D48066918323628CB016D8C94DC, FE110BF7A10EDD1DF7F6B933D373FCA51F37413282EBC4187E7C9B1965186BCC ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:22:21.0219 0x1150 mrxsmb - ok
17:22:21.0250 0x1150 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
17:22:21.0266 0x1150 mrxsmb10 - ok
17:22:21.0281 0x1150 [ 5C7DD2E5759FFCCD2C7341C1B90F2B26, 9822FA53E6067C0E39B7A3A3F1E88719D5D8B055D86FF894F0475B158289EA45 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
17:22:21.0281 0x1150 mrxsmb20 - ok
17:22:21.0312 0x1150 [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
17:22:21.0328 0x1150 MsBridge - ok
17:22:21.0344 0x1150 [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC C:\WINDOWS\System32\msdtc.exe
17:22:21.0344 0x1150 MSDTC - ok
17:22:21.0375 0x1150 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:22:21.0375 0x1150 Msfs - ok
17:22:21.0390 0x1150 [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
17:22:21.0390 0x1150 msgpiowin32 - ok
17:22:21.0406 0x1150 [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
17:22:21.0406 0x1150 mshidkmdf - ok
17:22:21.0422 0x1150 [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
17:22:21.0422 0x1150 mshidumdf - ok
17:22:21.0437 0x1150 [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
17:22:21.0437 0x1150 msisadrv - ok
17:22:21.0453 0x1150 [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
17:22:21.0468 0x1150 MSiSCSI - ok
17:22:21.0468 0x1150 msiserver - ok
17:22:21.0484 0x1150 [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:22:21.0484 0x1150 MSKSSRV - ok
17:22:21.0484 0x1150 [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
17:22:21.0484 0x1150 MsLldp - ok
17:22:21.0500 0x1150 [ 80FF037D6184FFACB2740A50C7949D20, D5DE0776E8E7E153310FCABB1D0D14CA238E4924229374B2926A0DB345F357D5 ] MSMQ C:\WINDOWS\system32\mqsvc.exe
17:22:21.0500 0x1150 MSMQ - ok
17:22:21.0515 0x1150 [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:22:21.0515 0x1150 MSPCLOCK - ok
17:22:21.0531 0x1150 [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
17:22:21.0531 0x1150 MSPQM - ok
17:22:21.0562 0x1150 [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
17:22:21.0562 0x1150 MsRPC - ok
17:22:21.0578 0x1150 [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
17:22:21.0578 0x1150 mssmbios - ok
17:22:21.0593 0x1150 [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
17:22:21.0593 0x1150 MSTEE - ok
17:22:21.0609 0x1150 [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
17:22:21.0609 0x1150 MTConfig - ok
17:22:21.0624 0x1150 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup C:\WINDOWS\system32\Drivers\mup.sys
17:22:21.0624 0x1150 Mup - ok
17:22:21.0640 0x1150 [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
17:22:21.0640 0x1150 mvumis - ok
17:22:21.0671 0x1150 [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent C:\WINDOWS\system32\qagentRT.dll
17:22:21.0687 0x1150 napagent - ok
17:22:21.0702 0x1150 [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
17:22:21.0718 0x1150 NativeWifiP - ok
17:22:21.0749 0x1150 [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
17:22:21.0749 0x1150 NcaSvc - ok
17:22:21.0765 0x1150 [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
17:22:21.0765 0x1150 NcdAutoSetup - ok
17:22:21.0827 0x1150 [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
17:22:21.0843 0x1150 NDIS - ok
17:22:21.0858 0x1150 [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
17:22:21.0858 0x1150 NdisCap - ok
17:22:21.0890 0x1150 [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
17:22:21.0890 0x1150 NdisImPlatform - ok
17:22:21.0905 0x1150 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:22:21.0905 0x1150 NdisTapi - ok
17:22:21.0921 0x1150 [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:22:21.0921 0x1150 Ndisuio - ok
17:22:21.0936 0x1150 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:22:21.0952 0x1150 NdisWan - ok
17:22:21.0952 0x1150 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:22:21.0952 0x1150 NDISWANLEGACY - ok
17:22:21.0983 0x1150 [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:22:21.0983 0x1150 NDProxy - ok
17:22:22.0014 0x1150 [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
17:22:22.0014 0x1150 Ndu - ok
17:22:22.0014 0x1150 [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:22:22.0030 0x1150 NetBIOS - ok
17:22:22.0046 0x1150 [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:22:22.0046 0x1150 NetBT - ok
17:22:22.0061 0x1150 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:22:22.0061 0x1150 Netlogon - ok

[mmmartin]

17:22:22.0092 0x1150 [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman C:\WINDOWS\System32\netman.dll
17:22:22.0108 0x1150 Netman - ok
17:22:22.0139 0x1150 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:22:22.0155 0x1150 NetMsmqActivator - ok
17:22:22.0155 0x1150 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:22:22.0155 0x1150 NetPipeActivator - ok
17:22:22.0202 0x1150 [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
17:22:22.0202 0x1150 netprofm - ok
17:22:22.0233 0x1150 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:22:22.0233 0x1150 NetTcpActivator - ok
17:22:22.0233 0x1150 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:22:22.0248 0x1150 NetTcpPortSharing - ok
17:22:22.0264 0x1150 [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960 C:\WINDOWS\system32\drivers\nfrd960.sys
17:22:22.0264 0x1150 nfrd960 - ok
17:22:22.0311 0x1150 [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
17:22:22.0326 0x1150 NlaSvc - ok
17:22:22.0358 0x1150 [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:22:22.0358 0x1150 Npfs - ok
17:22:22.0373 0x1150 [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
17:22:22.0373 0x1150 npsvctrig - ok
17:22:22.0389 0x1150 [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi C:\WINDOWS\system32\nsisvc.dll
17:22:22.0389 0x1150 nsi - ok
17:22:22.0404 0x1150 [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
17:22:22.0404 0x1150 nsiproxy - ok
17:22:22.0482 0x1150 [ 7BE3EDFFA3216F989A6BDCB14795DD08, 19A2D0120C46CA9BCFBC16DC3E65687ACDDCBA33B79128188652BA2AFAA2EE2F ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:22:22.0514 0x1150 Ntfs - ok
17:22:22.0529 0x1150 [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null C:\WINDOWS\system32\drivers\Null.sys
17:22:22.0529 0x1150 Null - ok
17:22:22.0560 0x1150 [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
17:22:22.0560 0x1150 NVHDA - ok
17:22:22.0904 0x1150 [ 757ACE4D4C9FF0571F86AA5D586B45E8, E7F23CC1DE26E2DAA690B78B05FC001EE0051F0ED9B9BCE9E7FA4E9684D4F3D4 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
17:22:23.0138 0x1150 nvlddmkm - ok
17:22:23.0247 0x1150 [ CD75EF8F5EC7EA52A5C3B30F9222726B, AADD461D727F4358E5F8A9694CBCBC53D2A55DCE661D80B7B0F790E05E2714E4 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
17:22:23.0278 0x1150 NvNetworkService - ok
17:22:23.0294 0x1150 [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
17:22:23.0294 0x1150 nvraid - ok
17:22:23.0325 0x1150 [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
17:22:23.0325 0x1150 nvstor - ok
17:22:23.0824 0x1150 [ 705A457356DCE04C6E071FB9D2B22408, D16CA73F7F6412FE29CB5DA1232A2BFAB430B1B794975559EE83D46F9D668836 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
17:22:24.0120 0x1150 NvStreamSvc - ok
17:22:24.0198 0x1150 [ 1C7CC708AC4A02A3BE8915539780534A, 0EBDE100880963BF1EC05002BA244CA7700693E958D1974CDD2AC3927D93224F ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
17:22:24.0214 0x1150 nvsvc - ok
17:22:24.0245 0x1150 [ 939C0FAE9CC0CDD69E6508BDE4C11FE5, 1E82FF4A8797A0EC5DF0E54DE7F358542C73FFFBECADDF86ED66839182E3B55D ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
17:22:24.0245 0x1150 nvvad_WaveExtensible - ok
17:22:24.0261 0x1150 [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
17:22:24.0261 0x1150 nv_agp - ok
17:22:24.0339 0x1150 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:22:24.0339 0x1150 odserv - ok
17:22:24.0370 0x1150 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:22:24.0370 0x1150 ose - ok
17:22:24.0401 0x1150 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
17:22:24.0417 0x1150 p2pimsvc - ok
17:22:24.0432 0x1150 [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc C:\WINDOWS\system32\p2psvc.dll
17:22:24.0432 0x1150 p2psvc - ok
17:22:24.0464 0x1150 [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport C:\WINDOWS\System32\drivers\parport.sys
17:22:24.0464 0x1150 Parport - ok
17:22:24.0495 0x1150 [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
17:22:24.0495 0x1150 partmgr - ok
17:22:24.0526 0x1150 [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
17:22:24.0542 0x1150 PcaSvc - ok
17:22:24.0557 0x1150 [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci C:\WINDOWS\system32\drivers\pci.sys
17:22:24.0557 0x1150 pci - ok
17:22:24.0573 0x1150 [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide C:\WINDOWS\system32\drivers\pciide.sys
17:22:24.0573 0x1150 pciide - ok
17:22:24.0588 0x1150 [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
17:22:24.0604 0x1150 pcmcia - ok
17:22:24.0620 0x1150 [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw C:\WINDOWS\system32\drivers\pcw.sys
17:22:24.0620 0x1150 pcw - ok
17:22:24.0651 0x1150 [ 0698DEDEAD6A00AD0D468C687D830FBF, B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA ] pdc C:\WINDOWS\system32\drivers\pdc.sys
17:22:24.0651 0x1150 pdc - ok
17:22:24.0682 0x1150 [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
17:22:24.0698 0x1150 PEAUTH - ok
17:22:24.0791 0x1150 [ DF0D9BDCB600913F40FF125BF8CE1979, 63544C3CEAF47FEEB761FD25BCAE53610C7AD65B7B2295C49D72A7C3C78A376D ] PeerDistSvc C:\WINDOWS\system32\peerdistsvc.dll
17:22:24.0869 0x1150 PeerDistSvc - ok
17:22:24.0947 0x1150 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
17:22:24.0947 0x1150 PerfHost - ok
17:22:25.0010 0x1150 [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla C:\WINDOWS\system32\pla.dll
17:22:25.0041 0x1150 pla - ok
17:22:25.0088 0x1150 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
17:22:25.0088 0x1150 PlugPlay - ok
17:22:25.0119 0x1150 [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
17:22:25.0119 0x1150 PNRPAutoReg - ok
17:22:25.0134 0x1150 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
17:22:25.0134 0x1150 PNRPsvc - ok
17:22:25.0166 0x1150 [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
17:22:25.0181 0x1150 PolicyAgent - ok
17:22:25.0212 0x1150 [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power C:\WINDOWS\system32\umpo.dll
17:22:25.0228 0x1150 Power - ok
17:22:25.0259 0x1150 [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:22:25.0259 0x1150 PptpMiniport - ok
17:22:25.0400 0x1150 [ 9D59831262CAD44E709D695FC9D5E7AB, F95C5475F91DA667C8D5C96253944CE8A0F2C9B1ED4DF8703E5D1D47A0C730B5 ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
17:22:25.0478 0x1150 PrintNotify - ok
17:22:25.0524 0x1150 [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor C:\WINDOWS\System32\drivers\processr.sys
17:22:25.0524 0x1150 Processor - ok
17:22:25.0556 0x1150 [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc C:\WINDOWS\system32\profsvc.dll
17:22:25.0556 0x1150 ProfSvc - ok
17:22:25.0587 0x1150 [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
17:22:25.0587 0x1150 Psched - ok
17:22:25.0634 0x1150 [ 543A4EF0923BF70D126625B034EF25AF, 9CC82C5221F11850419A796D48D5452B3DEE0C8E8E85A818F4AAA869673F9740 ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
17:22:25.0634 0x1150 PSI_SVC_2 - ok
17:22:25.0665 0x1150 [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE C:\WINDOWS\system32\qwave.dll
17:22:25.0665 0x1150 QWAVE - ok
17:22:25.0680 0x1150 [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
17:22:25.0680 0x1150 QWAVEdrv - ok
17:22:25.0696 0x1150 [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:22:25.0696 0x1150 RasAcd - ok
17:22:25.0727 0x1150 [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
17:22:25.0727 0x1150 RasAgileVpn - ok
17:22:25.0743 0x1150 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:22:25.0743 0x1150 RasAuto - ok
17:22:25.0758 0x1150 [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:22:25.0774 0x1150 Rasl2tp - ok
17:22:25.0790 0x1150 [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:22:25.0805 0x1150 RasMan - ok
17:22:25.0821 0x1150 [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:22:25.0821 0x1150 RasPppoe - ok
17:22:25.0836 0x1150 [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
17:22:25.0836 0x1150 RasSstp - ok
17:22:25.0868 0x1150 [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:22:25.0883 0x1150 rdbss - ok
17:22:25.0899 0x1150 [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
17:22:25.0899 0x1150 rdpbus - ok
17:22:25.0914 0x1150 [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
17:22:25.0930 0x1150 RDPDR - ok
17:22:25.0961 0x1150 [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
17:22:25.0961 0x1150 RdpVideoMiniport - ok
17:22:25.0977 0x1150 [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:22:25.0992 0x1150 RDPWD - ok
17:22:26.0008 0x1150 [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
17:22:26.0024 0x1150 rdyboost - ok
17:22:26.0039 0x1150 [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:22:26.0039 0x1150 RemoteAccess - ok
17:22:26.0070 0x1150 [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
17:22:26.0086 0x1150 RemoteRegistry - ok
17:22:26.0102 0x1150 [ CCBFCABDFE2BC22F0645CEAADDB36004, 279EA9075079F91165027CEFD4FBC61A213CA602EE7DE106F7D2D243468706AA ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
17:22:26.0102 0x1150 RFCOMM - ok
17:22:26.0133 0x1150 [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
17:22:26.0133 0x1150 RpcEptMapper - ok
17:22:26.0164 0x1150 [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator C:\WINDOWS\system32\locator.exe
17:22:26.0164 0x1150 RpcLocator - ok
17:22:26.0195 0x1150 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs C:\WINDOWS\system32\rpcss.dll
17:22:26.0211 0x1150 RpcSs - ok
17:22:26.0242 0x1150 [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
17:22:26.0242 0x1150 rspndr - ok
17:22:26.0289 0x1150 [ 7CC0D898D00675F14BA0C4BF056C1CF4, E9203DD2A201AEF206C1A4177FD564DDFC8E7468DC268BD99389626A2C6593D3 ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
17:22:26.0289 0x1150 RTL8168 - ok
17:22:26.0336 0x1150 [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
17:22:26.0336 0x1150 s3cap - ok
17:22:26.0367 0x1150 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] SamSs C:\WINDOWS\system32\lsass.exe
17:22:26.0367 0x1150 SamSs - ok
17:22:26.0398 0x1150 [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
17:22:26.0414 0x1150 sbp2port - ok
17:22:26.0429 0x1150 [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
17:22:26.0429 0x1150 SCardSvr - ok
17:22:26.0445 0x1150 [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
17:22:26.0445 0x1150 scfilter - ok
17:22:26.0507 0x1150 [ ED40ED9A65F3E79A8C43DD50C5FDADBF, 2323BFAB1BC3D661A376650B7AC14C7780C92BA575DA048F3C7611CDB3F7F04A ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:22:26.0570 0x1150 Schedule - ok
17:22:26.0585 0x1150 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
17:22:26.0585 0x1150 SCPolicySvc - ok
17:22:26.0616 0x1150 [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
17:22:26.0632 0x1150 sdbus - ok
17:22:26.0648 0x1150 [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
17:22:26.0648 0x1150 SDRSVC - ok
17:22:26.0679 0x1150 [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
17:22:26.0679 0x1150 sdstor - ok
17:22:26.0710 0x1150 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
17:22:26.0710 0x1150 secdrv - ok
17:22:26.0726 0x1150 [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon C:\WINDOWS\system32\seclogon.dll
17:22:26.0741 0x1150 seclogon - ok
17:22:26.0741 0x1150 [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS C:\WINDOWS\system32\sens.dll
17:22:26.0757 0x1150 SENS - ok
17:22:26.0772 0x1150 [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
17:22:26.0772 0x1150 SensrSvc - ok
17:22:26.0788 0x1150 [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
17:22:26.0788 0x1150 SerCx - ok
17:22:26.0804 0x1150 [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
17:22:26.0804 0x1150 Serenum - ok
17:22:26.0819 0x1150 [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial C:\WINDOWS\System32\drivers\serial.sys
17:22:26.0819 0x1150 Serial - ok
17:22:26.0835 0x1150 [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
17:22:26.0835 0x1150 sermouse - ok
17:22:26.0866 0x1150 [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv C:\WINDOWS\system32\sessenv.dll
17:22:26.0866 0x1150 SessionEnv - ok
17:22:26.0897 0x1150 [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
17:22:26.0897 0x1150 sfloppy - ok
17:22:26.0928 0x1150 [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:22:26.0944 0x1150 SharedAccess - ok
17:22:26.0975 0x1150 [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:22:26.0991 0x1150 ShellHWDetection - ok
17:22:27.0006 0x1150 [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
17:22:27.0006 0x1150 SiSRaid2 - ok
17:22:27.0022 0x1150 [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
17:22:27.0022 0x1150 SiSRaid4 - ok
17:22:27.0053 0x1150 [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
17:22:27.0053 0x1150 SNMPTRAP - ok
17:22:27.0069 0x1150 [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
17:22:27.0084 0x1150 spaceport - ok
17:22:27.0100 0x1150 [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
17:22:27.0100 0x1150 SpbCx - ok
17:22:27.0178 0x1150 [ 12583AF6CBE0050651EAF2723B3AD7B3, 965D4F981B54669A96C5AB02D09BF0A9850D13862425B8981F1A9271350F28BB ] speedfan C:\WINDOWS\syswow64\speedfan.sys
17:22:27.0194 0x1150 speedfan - ok
17:22:27.0225 0x1150 [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler C:\WINDOWS\System32\spoolsv.exe
17:22:27.0240 0x1150 Spooler - ok
17:22:27.0396 0x1150 [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
17:22:27.0474 0x1150 sppsvc - ok
17:22:27.0521 0x1150 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:22:27.0537 0x1150 srv - ok
17:22:27.0568 0x1150 [ 56218A571ECF8D55E0CDFF8DF2546CF1, 44B34722108EDDC8757A0B7C939A854457BB7EBC92A83C4284DFFAECFC2E3619 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
17:22:27.0584 0x1150 srv2 - ok
17:22:27.0599 0x1150 [ 14FC338B80CFF7E04215133B568D15C4, 1F437BE0EC887097F0C3409D4198A20981FC325FDF915532AB85070D337DEF2B ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
17:22:27.0599 0x1150 srvnet - ok
17:22:27.0615 0x1150 [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:22:27.0630 0x1150 SSDPSRV - ok
17:22:27.0646 0x1150 [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
17:22:27.0646 0x1150 SstpSvc - ok
17:22:27.0677 0x1150 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
17:22:27.0677 0x1150 ssudmdm - ok
17:22:27.0802 0x1150 [ CDA9313E34887A111B8309B55BCDCD82, AC070AA093B7013E4D1B29F4FAF9B469C3C261E4D3D1512B4F77CC609CBD1484 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:22:27.0802 0x1150 Stereo Service - ok
17:22:27.0818 0x1150 [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
17:22:27.0818 0x1150 stexstor - ok
17:22:27.0849 0x1150 [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc C:\WINDOWS\System32\wiaservc.dll
17:22:27.0880 0x1150 stisvc - ok
17:22:27.0896 0x1150 [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
17:22:27.0911 0x1150 storahci - ok
17:22:27.0911 0x1150 [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
17:22:27.0911 0x1150 storflt - ok
17:22:27.0942 0x1150 [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc C:\WINDOWS\system32\storsvc.dll
17:22:27.0942 0x1150 StorSvc - ok
17:22:27.0958 0x1150 [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
17:22:27.0958 0x1150 storvsc - ok
17:22:27.0974 0x1150 [ 1A36AC469140F87CDE62D7F8524E270C, B07086E0D844567FF0A880366EA8ED8042F8ED744E6AB1FD9539F360905A07F2 ] storvsp C:\WINDOWS\System32\drivers\storvsp.sys
17:22:27.0974 0x1150 storvsp - ok
17:22:27.0989 0x1150 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc C:\WINDOWS\system32\svsvc.dll
17:22:27.0989 0x1150 svsvc - ok
17:22:28.0005 0x1150 [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum C:\WINDOWS\System32\drivers\swenum.sys
17:22:28.0005 0x1150 swenum - ok
17:22:28.0036 0x1150 [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv C:\WINDOWS\System32\swprv.dll
17:22:28.0052 0x1150 swprv - ok
17:22:28.0114 0x1150 [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] SysMain C:\WINDOWS\system32\sysmain.dll
17:22:28.0145 0x1150 SysMain - ok
17:22:28.0161 0x1150 [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
17:22:28.0176 0x1150 SystemEventsBroker - ok
17:22:28.0192 0x1150 [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
17:22:28.0192 0x1150 TabletInputService - ok
17:22:28.0223 0x1150 [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:22:28.0223 0x1150 TapiSrv - ok
17:22:28.0301 0x1150 [ B23882881EFD9404B62993906BC38709, C3F7A4E5155336BF1B3375423C98308268B56B3B834EB2BF10467B7CC4EE18D5 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
17:22:28.0348 0x1150 Tcpip - ok
17:22:28.0410 0x1150 [ B23882881EFD9404B62993906BC38709, C3F7A4E5155336BF1B3375423C98308268B56B3B834EB2BF10467B7CC4EE18D5 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:22:28.0457 0x1150 TCPIP6 - ok
17:22:28.0473 0x1150 [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
17:22:28.0473 0x1150 tcpipreg - ok
17:22:28.0504 0x1150 [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
17:22:28.0504 0x1150 tdx - ok
17:22:28.0660 0x1150 [ F67C21CC4195F6AFC447418FE163E156, 01D245952C1AF2B365DBA6C36AFE0FFB2332480B6A1D7D4B43A0DE4FB7535B0B ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
17:22:28.0754 0x1150 TeamViewer8 - ok
17:22:28.0769 0x1150 [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
17:22:28.0769 0x1150 terminpt - ok
17:22:28.0800 0x1150 [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] TermService C:\WINDOWS\System32\termsrv.dll
17:22:28.0832 0x1150 TermService - ok
17:22:28.0863 0x1150 [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes C:\WINDOWS\system32\themeservice.dll
17:22:28.0863 0x1150 Themes - ok
17:22:28.0894 0x1150 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER C:\WINDOWS\system32\mmcss.dll
17:22:28.0894 0x1150 THREADORDER - ok
17:22:28.0925 0x1150 [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
17:22:28.0941 0x1150 TimeBroker - ok
17:22:28.0972 0x1150 [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
17:22:28.0972 0x1150 TPM - ok
17:22:28.0988 0x1150 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks C:\WINDOWS\System32\trkwks.dll
17:22:28.0988 0x1150 TrkWks - ok
17:22:29.0034 0x1150 [ B66EE1D68197DFB9AA24F961E68ACDCC, EB7536089BAF2384437EDE964F7A20AE00C988B8CCB61A8F12CB2BBD84C4FB6E ] trufos C:\WINDOWS\system32\drivers\trufos.sys
17:22:29.0034 0x1150 trufos - ok
17:22:29.0081 0x1150 [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
17:22:29.0081 0x1150 TrustedInstaller - ok
17:22:29.0097 0x1150 [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
17:22:29.0112 0x1150 TsUsbFlt - ok
17:22:29.0128 0x1150 [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
17:22:29.0128 0x1150 TsUsbGD - ok
17:22:29.0222 0x1150 [ 6DFBF7B7AE1D30239D4DA8014CB1988D, 6389867E9A75FE99C5CD7C49CEB3ABC3FDD40C1992F441A545B7865D540416E9 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
17:22:29.0268 0x1150 TuneUp.UtilitiesSvc - ok
17:22:29.0315 0x1150 [ 45427C4B8CAC6B241478F149B935CD80, 7F772D6D00D1ADD394F5907804661C75780EE9F8DF21EF0719D3E4ABA00092B7 ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
17:22:29.0315 0x1150 TuneUpUtilitiesDrv - ok
17:22:29.0346 0x1150 [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
17:22:29.0346 0x1150 tunnel - ok
17:22:29.0362 0x1150 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
17:22:29.0378 0x1150 uagp35 - ok
17:22:29.0378 0x1150 [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
17:22:29.0378 0x1150 UASPStor - ok
17:22:29.0409 0x1150 [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
17:22:29.0424 0x1150 UCX01000 - ok
17:22:29.0456 0x1150 [ 25C50F4EDF70D0A831E0566BD181CCF2, F2F9E86FB5617C16077D2073EC0AA747F76F1EB5148BA110347A84F3C3569F83 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
17:22:29.0456 0x1150 udfs - ok
17:22:29.0487 0x1150 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
17:22:29.0487 0x1150 UI0Detect - ok
17:22:29.0487 0x1150 ULCDRHlp - ok
17:22:29.0518 0x1150 [ 332D341D92B933600D41953B08360DFB, 213A5C84ABB0D627C05B355084A26A5081645D4EC398FF19EF6BBCB690B10055 ] UleadBurningHelper C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
17:22:29.0534 0x1150 UleadBurningHelper - ok
17:22:29.0549 0x1150 [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
17:22:29.0549 0x1150 uliagpkx - ok
17:22:29.0565 0x1150 [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
17:22:29.0565 0x1150 umbus - ok
17:22:29.0580 0x1150 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
17:22:29.0580 0x1150 UmPass - ok
17:22:29.0596 0x1150 [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
17:22:29.0612 0x1150 UmRdpService - ok
17:22:29.0658 0x1150 [ 67A95B9D129ED5399E7965CD09CF30E7, F1F2F684146F1CCB293BB9871117B8CFC1D04588A830F67CE5D3F0D034D93B2A ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
17:22:29.0658 0x1150 UMVPFSrv - ok
17:22:29.0690 0x1150 [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost C:\WINDOWS\System32\upnphost.dll
17:22:29.0705 0x1150 upnphost - ok
17:22:29.0736 0x1150 [ 9E9F21FF91D7ECC0BCCB94D3FE52A959, 85461393D62ED939F6741C2D0A90C8AB34F4415173223BB4CFC119715D10E7A7 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
17:22:29.0736 0x1150 usbaudio - ok
17:22:29.0752 0x1150 [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
17:22:29.0768 0x1150 usbccgp - ok
17:22:29.0783 0x1150 [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
17:22:29.0783 0x1150 usbcir - ok
17:22:29.0799 0x1150 [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
17:22:29.0799 0x1150 usbehci - ok
17:22:29.0830 0x1150 [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
17:22:29.0846 0x1150 usbhub - ok
17:22:29.0877 0x1150 [ E5F7328B1D29BCE791862CD3C0DD382A, E520D75CA6E4EDB06F576D97FB6B7CFD46A3EF3A3AC881537DE3BB8C862FE8C3 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
17:22:29.0892 0x1150 USBHUB3 - ok
17:22:29.0892 0x1150 [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
17:22:29.0908 0x1150 usbohci - ok
17:22:29.0924 0x1150 [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
17:22:29.0924 0x1150 usbprint - ok
17:22:29.0955 0x1150 [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
17:22:29.0955 0x1150 USBSTOR - ok
17:22:29.0970 0x1150 [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
17:22:29.0970 0x1150 usbuhci - ok
17:22:30.0002 0x1150 [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
17:22:30.0017 0x1150 USBXHCI - ok
17:22:30.0064 0x1150 [ 618B760DF9E0F29615D26BE78D78FED7, 6F3D3E3DA41FFD02BD2EA1063188A15F411227608FDB22AAC38A661E9279474E ] UxTuneUp C:\WINDOWS\System32\uxtuneup.dll
17:22:30.0064 0x1150 UxTuneUp - ok
17:22:30.0095 0x1150 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] VaultSvc C:\WINDOWS\system32\lsass.exe
17:22:30.0095 0x1150 VaultSvc - ok
17:22:30.0126 0x1150 [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
17:22:30.0126 0x1150 vdrvroot - ok
17:22:30.0173 0x1150 [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds C:\WINDOWS\System32\vds.exe
17:22:30.0189 0x1150 vds - ok
17:22:30.0204 0x1150 [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
17:22:30.0204 0x1150 VerifierExt - ok
17:22:30.0251 0x1150 [ 500BE6B2E49883720D0AE8BB859ED7A3, 4606B02A3E8123510676E554635EB5ECF9DC5F2B83928710C8563787C52CC102 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
17:22:30.0251 0x1150 vhdmp - ok
17:22:30.0267 0x1150 [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
17:22:30.0267 0x1150 viaide - ok
17:22:30.0282 0x1150 [ 0E43886F01C85B47BA0A3157274BCF59, C81E1841B1138D8C224FAF76258F7EB65145CCAF7938CA86CBADD8FFF79BA596 ] Vid C:\WINDOWS\System32\drivers\Vid.sys
17:22:30.0298 0x1150 Vid - ok
17:22:30.0314 0x1150 [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
17:22:30.0314 0x1150 vmbus - ok
17:22:30.0329 0x1150 [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
17:22:30.0329 0x1150 VMBusHID - ok
17:22:30.0345 0x1150 [ B4F432A51826FFC66F4DF72A83E8E4B1, 2C6F4D477F91605A3685FCF9EC6EA798E74C6853CC91547A749E9C050E7C19E8 ] vmbusr C:\WINDOWS\System32\drivers\vmbusr.sys
17:22:30.0345 0x1150 vmbusr - ok
17:22:30.0376 0x1150 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
17:22:30.0376 0x1150 vmicheartbeat - ok
17:22:30.0392 0x1150 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
17:22:30.0407 0x1150 vmickvpexchange - ok
17:22:30.0423 0x1150 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
17:22:30.0423 0x1150 vmicrdv - ok
17:22:30.0438 0x1150 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
17:22:30.0438 0x1150 vmicshutdown - ok
17:22:30.0454 0x1150 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
17:22:30.0454 0x1150 vmictimesync - ok
17:22:30.0470 0x1150 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss C:\WINDOWS\System32\ICSvc.dll
17:22:30.0485 0x1150 vmicvss - ok
17:22:30.0501 0x1150 [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
17:22:30.0501 0x1150 volmgr - ok
17:22:30.0532 0x1150 [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
17:22:30.0532 0x1150 volmgrx - ok
17:22:30.0579 0x1150 [ 78A5BBA3819FFFC62FFEC3E2220D102D, A95797B97D576374C2CDA8A09E6C51A89BADE428AAA89D5093579C85062E5874 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
17:22:30.0579 0x1150 volsnap - ok
17:22:30.0594 0x1150 [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
17:22:30.0594 0x1150 vpci - ok
17:22:30.0610 0x1150 [ 0190AFFF28F600461C0164353CC7EE27, D112DF69C9E629EC77FB95E7ACDDAAE24B5028C84454134BD26FEF9CC953AC0E ] vpcivsp C:\WINDOWS\System32\drivers\vpcivsp.sys
17:22:30.0626 0x1150 vpcivsp - ok
17:22:30.0626 0x1150 [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
17:22:30.0641 0x1150 vsmraid - ok
17:22:30.0688 0x1150 [ D0C69E44BC1E1D4AD290FD84104623D8, 4C86760EA4BD2A64FFD42D89284EC3E5048CB2F0F6F3B80D017B41C0D2456A90 ] VSS C:\WINDOWS\system32\vssvc.exe
17:22:30.0719 0x1150 VSS - ok
17:22:30.0751 0x1150 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
17:22:30.0751 0x1150 VSTXRAID - ok
17:22:30.0782 0x1150 [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
17:22:30.0782 0x1150 vwifibus - ok
17:22:30.0813 0x1150 [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time C:\WINDOWS\system32\w32time.dll
17:22:30.0828 0x1150 W32Time - ok
17:22:30.0875 0x1150 [ 901CC968412F8155B08D7ABE0171166A, D05A8E3D4D159546394E902C618D0583FE497B51C8F1C86D8E3B9E046819DD53 ] W3SVC C:\WINDOWS\system32\inetsrv\iisw3adm.dll
17:22:30.0891 0x1150 W3SVC - ok
17:22:30.0907 0x1150 [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
17:22:30.0907 0x1150 WacomPen - ok
17:22:30.0922 0x1150 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:22:30.0922 0x1150 Wanarp - ok
17:22:30.0938 0x1150 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:22:30.0938 0x1150 Wanarpv6 - ok
17:22:30.0953 0x1150 [ 901CC968412F8155B08D7ABE0171166A, D05A8E3D4D159546394E902C618D0583FE497B51C8F1C86D8E3B9E046819DD53 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
17:22:30.0953 0x1150 WAS - ok
17:22:31.0016 0x1150 [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine C:\WINDOWS\system32\wbengine.exe
17:22:31.0047 0x1150 wbengine - ok
17:22:31.0063 0x1150 [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
17:22:31.0078 0x1150 WbioSrvc - ok
17:22:31.0109 0x1150 [ AF1349386D4C6786EF4E34FACEF15042, 6B33778409BC54C1955B92508ADDEBAFD629141961B71C94A91DC4CFE8391A13 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
17:22:31.0141 0x1150 Wcmsvc - ok
17:22:31.0218 0x1150 [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
17:22:31.0234 0x1150 wcncsvc - ok
17:22:31.0250 0x1150 [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
17:22:31.0250 0x1150 WcsPlugInService - ok
17:22:31.0265 0x1150 [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd C:\WINDOWS\system32\drivers\wd.sys
17:22:31.0265 0x1150 Wd - ok
17:22:31.0297 0x1150 [ 07D19A55CD27B330534D2DDEA60D5FC6, 9C9441EA6943481838F61FD929F88FE25DC60BB8513A2C01CB4712918A883E3F ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
17:22:31.0297 0x1150 WdBoot - ok
17:22:31.0312 0x1150 [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM C:\WINDOWS\System32\drivers\wdcsam64.sys
17:22:31.0312 0x1150 WDC_SAM - ok
17:22:31.0359 0x1150 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
17:22:31.0374 0x1150 Wdf01000 - ok
17:22:31.0390 0x1150 [ CEBD9CDAADA11FAECCA82E4C06BCDD8E, 6D6E4BF0EB97004F9C07327923C9BD2B451FDDA567FAF39556595302EE5A1A54 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
17:22:31.0390 0x1150 WdFilter - ok
17:22:31.0421 0x1150 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
17:22:31.0421 0x1150 WdiServiceHost - ok
17:22:31.0421 0x1150 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
17:22:31.0437 0x1150 WdiSystemHost - ok
17:22:31.0484 0x1150 [ 9B1384CE8E681D2D77BB3524B8E86311, BDEF9D0A79A7C26A88088A306F91632F300E587736CDD2C64717EC54DD6E89FF ] WebClient C:\WINDOWS\System32\webclnt.dll
17:22:31.0484 0x1150 WebClient - ok
17:22:31.0515 0x1150 [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
17:22:31.0515 0x1150 Wecsvc - ok
17:22:31.0530 0x1150 [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
17:22:31.0530 0x1150 wercplsupport - ok
17:22:31.0546 0x1150 [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
17:22:31.0562 0x1150 WerSvc - ok
17:22:31.0577 0x1150 [ 4C47C55502806F8FEC5B523F24E8DC22, 39ACB56F04018E62D61A13389F9A675F71FBEEB86201FA0B1FDE17B5A3E936F5 ] WFLR6654 C:\WINDOWS\system32\drivers\wfeaglxt.sys
17:22:31.0593 0x1150 WFLR6654 - ok
17:22:31.0640 0x1150 [ 44BB9C31E6242C4BD1CE7C2B440C2533, E603BB001028918B687818E930340008C752679B133037367A8A8E41DA559FFE ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
17:22:31.0640 0x1150 WFPLWFS - ok
17:22:31.0655 0x1150 [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
17:22:31.0655 0x1150 WiaRpc - ok
17:22:31.0671 0x1150 [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
17:22:31.0671 0x1150 WIMMount - ok
17:22:31.0702 0x1150 WinDefend - ok
17:22:31.0780 0x1150 [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
17:22:31.0796 0x1150 WinHttpAutoProxySvc - ok
17:22:31.0858 0x1150 [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:22:31.0858 0x1150 Winmgmt - ok
17:22:31.0952 0x1150 [ 8E212A627F33F6FC3B5F3BB47212F66E, 9BBFE26ABFA14F346FE3711D13D959523EEA23608A33C16F3D750D66CA511911 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
17:22:32.0030 0x1150 WinRM - ok
17:22:32.0077 0x1150 [ BB20956C424531003F7FA6CD36F11D5D, 2C55F1C7553A527A7C4C34E730BE943269AE23928731C64D3DC945E07AE1771E ] WinUsb C:\WINDOWS\system32\DRIVERS\WinUsb.sys
17:22:32.0077 0x1150 WinUsb - ok
17:22:32.0139 0x1150 [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
17:22:32.0186 0x1150 WlanSvc - ok
17:22:32.0264 0x1150 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B, B76226808406D8B38DE2D3A8CCE633BB507022C8BAAA6C3DAD34204CC6CE1284 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
17:22:32.0326 0x1150 wlidsvc - ok
17:22:32.0357 0x1150 [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
17:22:32.0357 0x1150 WmiAcpi - ok
17:22:32.0389 0x1150 [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
17:22:32.0404 0x1150 wmiApSrv - ok
17:22:32.0420 0x1150 WMPNetworkSvc - ok
17:22:32.0435 0x1150 [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
17:22:32.0435 0x1150 wpcfltr - ok
17:22:32.0467 0x1150 [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
17:22:32.0467 0x1150 WPCSvc - ok
17:22:32.0482 0x1150 [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
17:22:32.0498 0x1150 WPDBusEnum - ok
17:22:32.0498 0x1150 [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
17:22:32.0513 0x1150 WpdUpFltr - ok
17:22:32.0545 0x1150 [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
17:22:32.0545 0x1150 ws2ifsl - ok
17:22:32.0560 0x1150 [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:22:32.0576 0x1150 wscsvc - ok
17:22:32.0576 0x1150 WSearch - ok
17:22:32.0654 0x1150 [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService C:\WINDOWS\System32\WSService.dll
17:22:32.0732 0x1150 WSService - ok
17:22:32.0825 0x1150 [ 311E5E1976E0BD9110A88B93158055D5, F1AA738D6AD74C33785EEFE1FBE8A869AAB62417B7D079389293AB1209A849C1 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
17:22:32.0935 0x1150 wuauserv - ok
17:22:32.0966 0x1150 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
17:22:32.0966 0x1150 WudfPf - ok
17:22:32.0981 0x1150 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
17:22:32.0997 0x1150 WUDFRd - ok
17:22:33.0013 0x1150 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
17:22:33.0013 0x1150 wudfsvc - ok
17:22:33.0028 0x1150 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
17:22:33.0044 0x1150 WUDFWpdFs - ok
17:22:33.0044 0x1150 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
17:22:33.0059 0x1150 WUDFWpdMtp - ok
17:22:33.0091 0x1150 [ 6D9E07436B6646EC8F7EFFD39B6BA288, 82C1CEA93ECEF17D221AD0F87C5BD96F3FD8143841C16BD9608BD4D58D90B8E0 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
17:22:33.0106 0x1150 WwanSvc - ok
17:22:33.0215 0x1150 [ 529D9F6C9A3BB3E8450E6EFAF24F9B7D, D492E58BE85A28843C7F6BA221E54233E95690287232B60D202ACE796B807604 ] {09F57980-3432-4AFC-957D-27AC45FAE1F5} C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl
17:22:33.0215 0x1150 {09F57980-3432-4AFC-957D-27AC45FAE1F5} - ok
17:22:33.0215 0x1150 ================ Scan global ===============================
17:22:33.0247 0x1150 [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\WINDOWS\system32\basesrv.dll
17:22:33.0278 0x1150 [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\WINDOWS\system32\winsrv.dll
17:22:33.0309 0x1150 [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\WINDOWS\system32\sxssrv.dll
17:22:33.0340 0x1150 [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\WINDOWS\system32\services.exe
17:22:33.0356 0x1150 [ Global ] - ok
17:22:33.0356 0x1150 ================ Scan MBR ==================================
17:22:33.0356 0x1150 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:22:33.0621 0x1150 \Device\Harddisk0\DR0 - ok
17:22:33.0621 0x1150 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
17:22:33.0637 0x1150 \Device\Harddisk1\DR1 - ok
17:22:33.0637 0x1150 ================ Scan VBR ==================================
17:22:33.0637 0x1150 [ 231CF4B7FF681F7C1146FFC6DCF80782 ] \Device\Harddisk0\DR0\Partition1
17:22:33.0637 0x1150 \Device\Harddisk0\DR0\Partition1 - ok
17:22:33.0637 0x1150 [ 01B9EA7F21679C457E2EA614A8894EFA ] \Device\Harddisk1\DR1\Partition1
17:22:33.0668 0x1150 \Device\Harddisk1\DR1\Partition1 - ok
17:22:33.0668 0x1150 [ 3A3121B2FA6EF35876C25A6583A759E6 ] \Device\Harddisk1\DR1\Partition2
17:22:33.0683 0x1150 \Device\Harddisk1\DR1\Partition2 - ok
17:22:33.0683 0x1150 [ 5C01C30CC4E9555E3B387B905C365087 ] \Device\Harddisk1\DR1\Partition3
17:22:33.0715 0x1150 \Device\Harddisk1\DR1\Partition3 - ok
17:22:33.0715 0x1150 Waiting for KSN requests completion. In queue: 100
17:22:34.0729 0x1150 Waiting for KSN requests completion. In queue: 100
17:22:35.0743 0x1150 Waiting for KSN requests completion. In queue: 100
17:22:36.0772 0x1150 AV detected via SS2: AVG Internet Security 2014, C:\Program Files (x86)\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
17:22:36.0772 0x1150 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.4.304.0 ), 0x60100 ( disabled : updated )
17:22:36.0772 0x1150 FW detected via SS2: AVG Internet Security 2014, C:\Program Files (x86)\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41010 ( enabled )
17:22:39.0190 0x1150 ============================================================
17:22:39.0190 0x1150 Scan finished
17:22:39.0190 0x1150 ============================================================
17:22:39.0190 0x1610 Detected object count: 0
17:22:39.0190 0x1610 Actual detected object count: 0

[mmmartin]

UP PLS.

[Orcus]

TDSS čistý.

====================================================

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud bude po kontrole problém spustit aplikace nebo bude vyskakovat hláška o pokusu použít neplatnou operaci na klíč registru, který je označen pro odstranění, stačí restartovat počítač.

Pokud budou problémy , spusť v nouz. režimu.