Author Topic: Rootkit.Win32.TDSS.d on Vista (Read 79709 times)

pancakejohn · « **Reply #30 on:** April 23, 2010, 01:54:25 PM »

Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\system32\uxtheme.dll (Microsoft UxTheme Library/Microsoft Corporation) 0x74830000
Library C:\Windows\system32\WINSTA.dll (Winstation Library/Microsoft Corporation) 0x750A0000
Library C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation) 0x75790000

Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 1628
Library C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 0x00B00000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\system32\XmlLite.dll (Microsoft XmlLite Library/Microsoft Corporation) 0x747A0000
Library C:\Windows\system32\MPR.dll (Multiple Provider Router DLL/Microsoft Corporation) 0x753A0000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Windows\system32\tschannel.dll (Task Scheduler Proxy/Microsoft Corporation) 0x72E90000
Library C:\Windows\system32\uxtheme.dll (Microsoft UxTheme Library/Microsoft Corporation) 0x74830000
Library C:\Windows\System32\HotStartUserAgent.dll (Microsoft Windows HotStart User Agent/Microsoft Corporation) 0x72E80000
Library C:\Windows\System32\slc.dll (Software Licensing Client Dll/Microsoft Corporation) 0x75260000
Library C:\Windows\system32\MsCtfMonitor.dll (MsCtfMonitor DLL/Microsoft Corporation) 0x72E60000
Library C:\Windows\system32\MSUTB.dll (MSUTB Server DLL/Microsoft Corporation) 0x71FC0000
Library C:\Windows\system32\dwmapi.dll (Microsoft Desktop Window Manager API/Microsoft Corporation) 0x73C50000
Library C:\Windows\system32\WTSAPI32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Windows\System32\PlaySndSrv.dll (PlaySound Service/Microsoft Corporation) 0x72E50000
Library C:\Windows\System32\WINMM.dll (MCI API DLL/Microsoft Corporation) 0x74080000
Library C:\Windows\System32\OLEACC.dll (Active Accessibility Core Component/Microsoft Corporation) 0x74040000
Library C:\Windows\system32\DrvTrNTm.dll (Wave sound driver for the Total Recorder (Professional Edition)/High Criteria inc.) 0x6BC00000
Library C:\Windows\system32\DrvTrNTl.dll (Wave sound driver for the Total Recorder (Professional Edition), additional dll/High Criteria inc.) 0x6BC20000
Library C:\Windows\system32\wdmaud.drv (Winmm audio system driver/Microsoft Corporation) 0x73E30000
Library C:\Windows\system32\ksuser.dll (User CSA Library/Microsoft Corporation) 0x74B80000
Library C:\Windows\system32\MMDevAPI.DLL (MMDevice API/Microsoft Corporation) 0x747D0000
Library C:\Windows\system32\AVRT.dll (Multimedia Realtime Runtime/Microsoft Corporation) 0x74790000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\system32\WINTRUST.dll (Microsoft Trust Verification APIs/Microsoft Corporation) 0x74AB0000
Library C:\Windows\system32\CRYPT32.dll (Crypto API32/Microsoft Corporation) 0x752A0000
Library C:\Windows\system32\MSASN1.dll (ASN.1 Runtime APIs/Microsoft Corporation) 0x75400000
Library C:\Windows\system32\USERENV.dll (Userenv/Microsoft Corporation) 0x75810000
Library C:\Windows\system32\imagehlp.dll (Windows NT Image Helper/Microsoft Corporation) 0x75C40000
Library C:\Windows\system32\AUDIOSES.DLL (Audio Session/Microsoft Corporation) 0x73E00000
Library C:\Windows\system32\audioeng.dll (Audio Engine/Microsoft Corporation) 0x73D90000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\msacm32.drv (Microsoft Sound Mapper/Microsoft Corporation) 0x74020000
Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x73D10000
Library C:\Windows\system32\midimap.dll (Microsoft MIDI Mapper/Microsoft Corporation) 0x73D60000
Library C:\Windows\System32\QAgent.dll (Quarantine Agent Proxy/Microsoft Corporation) 0x6D8B0000
Library C:\Windows\System32\fwpuclnt.dll (FWP/IPsec User-Mode API/Microsoft Corporation) 0x73570000
Library C:\Windows\System32\QUtil.dll (Quarantine Utilities/Microsoft Corporation) 0x6DB90000
Library C:\Windows\System32\wevtapi.dll (Eventing Consumption and Configuration API/Microsoft Corporation) 0x75220000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\dimsjob.dll (DIMS Job DLL/Microsoft Corporation) 0x71180000
Library C:\Windows\system32\ncrypt.dll (Windows cryptographic library/Microsoft Corporation) 0x75120000
Library C:\Windows\system32\GPAPI.dll (Group Policy Client API/Microsoft Corporation) 0x74EE0000
Library C:\Windows\system32\pautoenr.dll (Auto Enrollment DLL/Microsoft Corporation) 0x6DB50000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\certcli.dll (Microsoft® Active Directory Certificate Services Client/Microsoft Corporation) 0x6D8E0000
Library C:\Windows\system32\ATL.DLL (ATL Module for Windows XP (Unicode)/Microsoft Corporation) 0x73D70000
Library C:\Windows\system32\WININET.dll (Internet Extensions for Win32/Microsoft Corporation) 0x762A0000
Library C:\Windows\system32\Normaliz.dll (Unicode Normalization DLL/Microsoft Corporation) 0x77400000
Library C:\Windows\system32\urlmon.dll (OLE32 Extensions for Win32/Microsoft Corporation) 0x760D0000
Library C:\Windows\system32\iertutil.dll (Run time utility for Internet Explorer/Microsoft Corporation) 0x76460000
Library C:\Windows\system32\certenroll.dll (Microsoft® Active Directory Certificate Services Enrollment Client/Microsoft Corporation) 0x6D190000
Library C:\Windows\system32\NTDSAPI.dll (Active Directory Domain Services API/Microsoft Corporation) 0x753E0000
Library C:\Windows\system32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Windows\system32\WinSCard.dll (Microsoft Smart Card API/Microsoft Corporation) 0x6DB70000
Library C:\Windows\system32\WINSTA.dll (Winstation Library/Microsoft Corporation) 0x750A0000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1632
Library C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 0x00940000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\NTMARTA.DLL (Windows NT MARTA provider/Microsoft Corporation) 0x74C80000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library c:\windows\system32\dnsrslvr.dll (DNS Caching Resolver Service/Microsoft Corporation) 0x73980000
Library c:\windows\system32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library c:\windows\system32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library c:\windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library c:\windows\system32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) 0x751A0000
Library c:\windows\system32\dhcpcsvc6.DLL (DHCPv6 Client/Microsoft Corporation) 0x75170000
Library c:\windows\system32\IPHLPAPI.DLL (IP Helper API/Microsoft Corporation) 0x751F0000
Library C:\Windows\system32\mswsock.dll (Microsoft Windows Sockets 2.0 Service Provider/Microsoft Corporation) 0x74F80000
Library C:\Windows\System32\wship6.dll (Winsock2 Helper DLL (TL/IPv6)/Microsoft Corporation) 0x75060000
Library C:\Windows\System32\wshtcpip.dll (Winsock2 Helper DLL (TL/IPv4)/Microsoft Corporation) 0x74C40000
Library c:\windows\system32\cryptsvc.dll (Cryptographic Services/Microsoft Corporation) 0x74300000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
L

pancakejohn · « **Reply #31 on:** April 23, 2010, 01:54:56 PM »

Library C:\Windows\system32\schannel.dll (TLS / SSL Security Provider/Microsoft Corporation) 0x74D10000
Library C:\Windows\System32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\System32\SPOOLSS.DLL (Spooler SubSystem DLL/Microsoft Corporation) 0x73940000
Library C:\Windows\System32\WTSAPI32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Windows\System32\WINSTA.dll (Winstation Library/Microsoft Corporation) 0x750A0000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\mswsock.dll (Microsoft Windows Sockets 2.0 Service Provider/Microsoft Corporation) 0x74F80000
Library C:\Windows\System32\IPHLPAPI.DLL (IP Helper API/Microsoft Corporation) 0x751F0000
Library C:\Windows\System32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library C:\Windows\System32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Windows\System32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) 0x751A0000
Library C:\Windows\System32\dhcpcsvc6.DLL (DHCPv6 Client/Microsoft Corporation) 0x75170000
Library C:\Windows\System32\rasadhlp.dll (Remote Access AutoDial Helper/Microsoft Corporation) 0x72EA0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\System32\WINTRUST.dll (Microsoft Trust Verification APIs/Microsoft Corporation) 0x74AB0000
Library C:\Windows\system32\imagehlp.dll (Windows NT Image Helper/Microsoft Corporation) 0x75C40000
Library C:\Windows\System32\localspl.dll (Local Spooler DLL/Microsoft Corporation) 0x72100000
Library C:\Windows\System32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\System32\sfc.dll (Windows File Protection/Microsoft Corporation) 0x72EB0000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\System32\winspool.drv (Windows Spooler Driver/Microsoft Corporation) 0x73ED0000
Library C:\Windows\System32\AdobePDF.dll (Adobe PDF Port Monitor DLL/Adobe Systems Inc) 0x00680000
Library C:\Windows\System32\CNYMLM11.DLL (SELPHY CP Family Driver Language Monitor/Canon INC.) 0x10000000
Library C:\Windows\System32\FXSMON.DLL (Microsoft Fax Print Monitor/Microsoft Corporation) 0x719E0000
Library C:\Windows\System32\FXSRESM.DLL (Microsoft Fax Resource DLL/Microsoft Corporation) 0x71730000
Library C:\Windows\System32\msonpmon.dll (Microsoft Office OneNote 2007 Printer Driver/Microsoft Corporation) 0x71900000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCR80.dll (Microsoft® C Runtime Library/Microsoft Corporation) 0x71AA0000
Library C:\Windows\System32\msi.dll (Windows Installer/Microsoft Corporation) 0x71520000
Library C:\Windows\System32\tcpmon.dll (Standard TCP/IP Port Monitor DLL/Microsoft Corporation) 0x718D0000
Library C:\Windows\System32\snmpapi.dll (SNMP Utility Library/Microsoft Corporation) 0x718C0000
Library C:\Windows\System32\wsnmp32.dll (Microsoft WinSNMP v2.0 Manager API/Microsoft Corporation) 0x718B0000
Library C:\Windows\System32\msxml6.dll (MSXML 6.0 SP2/Microsoft Corporation) 0x71260000
Library C:\Windows\System32\tcpmib.dll (Standard TCP/IP Port Monitor Helper DLL/Microsoft Corporation) 0x718A0000
Library C:\Windows\System32\mgmtapi.dll (Microsoft SNMP Manager API (uses WinSNMP)/Microsoft Corporation) 0x71830000
Library C:\Windows\System32\sugo3l3.dll 0x00720000
Library C:\Windows\System32\usbmon.dll (Standard Dynamic Printing Port Monitor DLL/Microsoft Corporation) 0x71820000
Library C:\Windows\system32\wls0wndh.dll (Session0 Viewer Window Hook DLL/Microsoft Corporation) 0x71500000
Library C:\Windows\System32\WSDMon.dll (WSD Printer Port Monitor/Microsoft Corporation) 0x714D0000
Library C:\Windows\System32\wsdapi.dll (Web Services for Devices API DLL/Microsoft Corporation) 0x71470000
Library C:\Windows\System32\HTTPAPI.dll (HTTP Protocol Stack API/Microsoft Corporation) 0x71510000
Library C:\Windows\System32\WINHTTP.dll (Windows HTTP Services/Microsoft Corporation) 0x73510000
Library C:\Windows\System32\XmlLite.dll (Microsoft XmlLite Library/Microsoft Corporation) 0x747A0000
Library C:\Windows\System32\CFGMGR32.dll (Configuration Manager Forwarder DLL/Microsoft Corporation) 0x71460000
Library C:\Windows\system32\FunDisc.dll (Function Discovery Dll/Microsoft Corporation) 0x71400000
Library C:\Windows\system32\ATL.DLL (ATL Module for Windows XP (Unicode)/Microsoft Corporation) 0x73D70000
Library C:\Windows\System32\msxml3.dll (MSXML 3.0 SP10/Microsoft Corporation) 0x70FE0000
Library C:\Windows\system32\spool\PRTPROCS\W32X86\msonpppr.dll (Microsoft Office OneNote 2007 Printer Driver/Microsoft Corporation) 0x71430000
Library C:\Windows\system32\spool\PRTPROCS\W32X86\sugo3pc.dll (Windows?Server 2003 Driver Development Kit Print DLL/Windows (R) 2000 DDK provider) 0x00A60000
Library C:\Windows\System32\NTMARTA.DLL (Windows NT MARTA provider/Microsoft Corporation) 0x74C80000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\System32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\System32\inetpp.dll (Internet Print Provider DLL/Microsoft Corporation) 0x71210000
Library C:\Windows\System32\wshtcpip.dll (Winsock2 Helper DLL (TL/IPv4)/Microsoft Corporation) 0x74C40000
Library C:\Windows\System32\wship6.dll (Winsock2 Helper DLL (TL/IPv6)/Microsoft Corporation) 0x75060000
Library C:\Windows\system32\NLAapi.dll (Network Location Awareness 2/Microsoft Corporation) 0x74030000
Library C:\Windows\system32\napinsp.dll (E-mail Naming Shim Provider/Microsoft Corporation) 0x713C0000
Library C:\Windows\system32\pnrpnsp.dll (PNRP Name Space Provider/Microsoft Corporation) 0x711D0000
Library C:\Windows\System32\winrnr.dll (LDAP RnR Provider DLL/Microsoft Corporation) 0x71200000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000
Library C:\Windows\System32\win32spl.dll (Client Side Rendering Print Provider/Microsoft Corporation) 0x70EA0000
Library C:\Windows\System32\NETRAP.dll (Net Remote Admin Protocol DLL/Microsoft Corporation) 0x71450000
Library C:\Windows\system32\printcom.dll (Print System COM component host/Microsoft Corporation) 0x711C0000
Library C:\Windows\system32\SensApi.dll (SENS Connectivity API DLL/Microsoft Corporation) 0x711F0000
Library C:\Windows\System32\GPAPI.dll (Group Policy Client API/Microsoft Corporation) 0x74EE0000
Library C:\Windows\System32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1884
Library C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 0x00940000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library c:\windows\system32\bfe.dll (Base Filtering Engine/Microsoft Corporation) 0x73610000
Library c:\windows\system32\AUTHZ.dll (Authorization Framework/Microsoft Corporation) 0x757D0000
Library c:\windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library c:\windows\system32\mpssvc.dll (Microsoft Protection Service/Microsoft Corporation) 0x73490000
Library c:\windows\system32\FirewallAPI.dll (Windows Firewall API/Microsoft Corporation) 0x74B90000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library c:\windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library c:\windows\system32\nlaapi.dll (Network Location Awareness 2/Microsoft Corporation) 0x74030000
Library c:\windows\system32\IPHLPAPI.DLL (IP Helper API/Microsoft Corporation) 0x751F0000
Library c:\windows\system32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library c:\windows\system32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library c:\windows\system32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) 0x751A0000
Library c:\windows\system32\dhcpcsvc6.DLL (DHCPv6 Client/Microsoft Corporation) 0x75170000
Library c:\windows\system32\CRYPT32.dll (Crypto API32/Microsoft Corporation) 0x752A0000
Library c:\windows\system32\MSASN1.dll (ASN.1 Runtime APIs/Microsoft Corporation) 0x75400000
Library c:\windows\system32\USERENV.dll (Userenv/Microsoft Corporation) 0x75810000
Library c:\windows\system32\bcrypt.dll (Windows Cryptographic Primitives Library/Microsoft Corporation) 0x750D0000
Library c:\windows\system32\WTSAPI32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library c:\windows\system32\fwpuclnt.dll (FWP/IPsec User-Mode API/Microsoft Corporation) 0x73570000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\credssp.dll (TS Single Sign On Security Package/Microsoft Corporation) 0x75090000
Library C:\Windows\system32\schannel.dll (TLS / SSL Security Provider/Microsoft Corporation) 0x74D10000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\GPAPI.dll (Group Policy Client API/Microsoft Corporation) 0x74EE0000
Library C

pancakejohn · « **Reply #32 on:** April 23, 2010, 01:55:31 PM »

Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\WindowsCodecs.dll (Microsoft Windows Codecs Library/Microsoft Corporation) 0x739A0000
Library C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation) 0x75790000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (GrooveShellExtensions Module/Microsoft Corporation) 0x71C60000
Library C:\Program Files\Microsoft Office\Office12\GrooveUtil.DLL (GrooveUtil Module/Microsoft Corporation) 0x71B40000
Library C:\Windows\system32\WININET.dll (Internet Extensions for Win32/Microsoft Corporation) 0x762A0000
Library C:\Windows\system32\Normaliz.dll (Unicode Normalization DLL/Microsoft Corporation) 0x77400000
Library C:\Windows\system32\urlmon.dll (OLE32 Extensions for Win32/Microsoft Corporation) 0x760D0000
Library C:\Windows\system32\iertutil.dll (Run time utility for Internet Explorer/Microsoft Corporation) 0x76460000
Library C:\Windows\system32\CRYPT32.dll (Crypto API32/Microsoft Corporation) 0x752A0000
Library C:\Windows\system32\MSASN1.dll (ASN.1 Runtime APIs/Microsoft Corporation) 0x75400000
Library C:\Windows\system32\USERENV.dll (Userenv/Microsoft Corporation) 0x75810000
Library C:\Windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCR80.dll (Microsoft® C Runtime Library/Microsoft Corporation) 0x71AA0000
Library C:\Program Files\Microsoft Office\Office12\GrooveNew.DLL (GrooveNew Module/Microsoft Corporation) 0x72E70000
Library C:\Windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.DLL (ATL Module for Windows (Unicode)/Microsoft Corporation) 0x71C40000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000
Library C:\Windows\system32\MSImg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x74B70000
Library C:\Windows\System32\cscui.dll (Client Side Caching UI/Microsoft Corporation) 0x71A00000
Library C:\Windows\System32\CSCDLL.dll (Offline Files Temporary Shim/Microsoft Corporation) 0x72E40000
Library C:\Windows\System32\CSCAPI.dll (Offline Files Win32 API/Microsoft Corporation) 0x719F0000
Library C:\Windows\system32\IconCodecService.dll (Converts a PNG part of the icon to a legacy bmp icon/Microsoft Corporation) 0x719D0000
Library C:\Windows\system32\timedate.cpl (Time Date Control Panel Applet/Microsoft Corporation) 0x71910000
Library C:\Windows\system32\ATL.DLL (ATL Module for Windows XP (Unicode)/Microsoft Corporation) 0x73D70000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\OLEACC.dll (Active Accessibility Core Component/Microsoft Corporation) 0x74040000
Library C:\Windows\system32\ACTXPRXY.DLL (ActiveX Interface Marshaling Library/Microsoft Corporation) 0x71840000
Library C:\Program Files\iTunes\iTunesMiniPlayer.dll (iTunes Mini Player DLL/Apple Inc.) 0x713D0000
Library C:\Program Files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll (iTunes Mini Player Resource Library/Apple Inc.) 0x71440000
Library C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll (iTunes Mini Player Resource Library/Apple Inc.) 0x71230000
Library C:\Windows\system32\WINBRAND.dll (Windows Branding Resources/Microsoft Corporation) 0x74D60000
Library C:\Windows\System32\shacct.dll (Shell Accounts Classes/Microsoft Corporation) 0x73FE0000
Library C:\Windows\System32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\System32\msshsq.dll (Structured Query/Microsoft Corporation) 0x71130000
Library C:\Windows\System32\NaturalLanguage6.dll (Natural Language Development Platform 6/Microsoft Corporation) 0x70DD0000
Library C:\Windows\System32\NLSData0009.dll (Microsoft English Natural Language Server Data and Code/Microsoft Corporation) 0x70470000
Library C:\Windows\System32\NLSLexicons0009.dll (Microsoft English Natural Language Server Data and Code/Microsoft Corporation) 0x701E0000
Library C:\Windows\system32\authui.dll (Windows Authentication UI/Microsoft Corporation) 0x74460000
Library C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (GrooveSystemServices Module/Microsoft Corporation) 0x70FB0000
Library C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll (GrooveMisc Module/Microsoft Corporation) 0x70AD0000
Library C:\Windows\System32\msxml3.dll (MSXML 3.0 SP10/Microsoft Corporation) 0x70FE0000
Library C:\Windows\system32\NTMARTA.DLL (Windows NT MARTA provider/Microsoft Corporation) 0x74C80000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\ieframe.dll (Internet Explorer/Microsoft Corporation) 0x6F740000
Library C:\Windows\system32\LINKINFO.dll (Windows Volume Tracking/Microsoft Corporation) 0x711B0000
Library C:\Windows\system32\WINMM.dll (MCI API DLL/Microsoft Corporation) 0x74080000
Library C:\Windows\system32\wdmaud.drv (Winmm audio system driver/Microsoft Corporation) 0x73E30000
Library C:\Windows\system32\ksuser.dll (User CSA Library/Microsoft Corporation) 0x74B80000
Library C:\Windows\system32\MMDevAPI.DLL (MMDevice API/Microsoft Corporation) 0x747D0000
Library C:\Windows\system32\AVRT.dll (Multimedia Realtime Runtime/Microsoft Corporation) 0x74790000
Library C:\Windows\system32\ntshrui.dll (Shell extensions for sharing/Microsoft Corporation) 0x709D0000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\system32\WINTRUST.dll (Microsoft Trust Verification APIs/Microsoft Corporation) 0x74AB0000
Library C:\Windows\system32\imagehlp.dll (Windows NT Image Helper/Microsoft Corporation) 0x75C40000
Library C:\Windows\system32\AUDIOSES.DLL (Audio Session/Microsoft Corporation) 0x73E00000
Library C:\Windows\system32\audioeng.dll (Audio Engine/Microsoft Corporation) 0x73D90000
Library C:\Windows\system32\msacm32.drv (Microsoft Sound Mapper/Microsoft Corporation) 0x74020000
Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x73D10000
Library C:\Windows\system32\midimap.dll (Microsoft MIDI Mapper/Microsoft Corporation) 0x73D60000
Library C:\Windows\system32\ExplorerFrame.dll (ExplorerFrame/Microsoft Corporation) 0x70A30000
Library C:\Windows\system32\stobject.dll (Systray shell service object/Microsoft Corporation) 0x6D770000
Library C:\Windows\system32\BatMeter.dll (Battery Meter Helper DLL/Microsoft Corporation) 0x6D6B0000
Library C:\Windows\system32\WTSAPI32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Windows\system32\WINSTA.dll (Winstation Library/Microsoft Corporation) 0x750A0000
Library C:\Windows\system32\es.dll (COM+/Microsoft Corporation) 0x73AD0000
Library C:\Windows\System32\SndVolSSO.dll (SCA Volume/Microsoft Corporation) 0x6D880000
Library C:\Windows\ehome\ehSSO.dll (Windows Media Center Shell Service Object/Microsoft Corporation) 0x6D850000
Library C:\Windows\system32\HID.DLL (Hid User Library/Microsoft Corporation) 0x73C80000
Library C:\Windows\System32\netshell.dll (Network Connections Shell/Microsoft Corporation) 0x6CE50000
Library C:\Windows\System32\IPHLPAPI.DLL (IP Helper API/Microsoft Corporation) 0x751F0000
Library C:\Windows\System32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library C:\Windows\System32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Windows\System32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) 0x751A0000
Library C:\Windows\System32\dhcpcsvc6.DLL (DHCPv6 Client/Microsoft Corporation) 0x75170000
Library C:\Windows\System32\nlaapi.dll (Network Location Awareness 2/Microsoft Corporation) 0x74030000
Library C:\Windows\system32\pnidui.dll (Network System Icon/Microsoft Corporation) 0x6D2B0000
Library C:\Windows\system32\QUtil.dll (Quarantine Utilities/Microsoft Corporation) 0x6DB90000
Library C:\Windows\system32\wevtapi.dll (Eventing Consumption and Configuration API/Microsoft Corporation) 0x75220000
Library C:\Windows\system32\wlanutil.dll (Windows Wireless LAN 802.11 Utility DLL/Microsoft Corporation) 0x70970000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x6E7D0000
Library C:\Windows\system32\Wlanapi.dll (Windows WLAN AutoConfig Client Side API DLL/Microsoft Corporation) 0x709B0000
Library C:\Windows\system32\OneX.DLL (IEEE 802.1X supplicant library/Microsoft Corporation) 0x6F4D0000
Library C:\Windows\system32\eappprxy.dll (Microsoft EAPHost Peer Client DLL/Microsoft Corporation) 0x70A20000
Library C:\Windows\system32\eappcfg.dll (Eap Peer Config/Microsoft Corporation) 0x70980000
Library C:\Windows\system32\bcrypt.dll (Windows Cryptographic Primitives Library/Microsoft Corporation) 0x750D0000
Library C:\Windows\System32\AltTab.dll (Windows Shell Alt Tab/Microsoft Corporation) 0x6DA20000
Library C:\Windows\system32\wpdshserviceobj.dll (Windows Portable Device Shell Service Object/Microsoft Corporation) 0x6D820000
Library C:\Windows\system32\WINHTTP.dll (Windows HTTP Services/Microsoft Corporation) 0x73510000
Library C:\Windows\System32\srchadmin.dll (Indexing Options/Microsoft Corporation) 0x6CDB0000
Library C:\Windows\System32\cscobj.dll (In-proc COM object used by clients of CSC API/Microsoft Corporation) 0x6D160000
Library C:\Windows\System32\MPR.dll (Multiple Provider Router DLL/Microsoft Corporation) 0x753A0000
Library C:\Windows\System32\webcheck.dll (Web Site Monitor/Microsoft Corporation) 0x6CE10000
Library C:\Windows\System32\MLANG.dll (Multi Language Support DLL/Microsoft Corporation) 0x6D9F0000
Library C:\Windows\System32\SyncCenter.dll (Microsoft Sync Center/Microsoft Corporation) 0x6C970000
Library C:\Windows\system32\wscntfy.dll (Windows Security Center Notification App/Microsoft Corporation) 0x6CD70000
Library C:\Windows\system32\WSCAPI.dll (Windows Security Center API/Microsoft Corporation) 0x73370000
Library C:\Windows\System32\QAgent.dll (Quarantine Agent Proxy/Microsoft Corporation) 0x6D8B0000
Library C:\Windows\System32\fwpuclnt.dll (FWP/IPsec User-Mode API/Microsoft Corporation) 0x73570000
Library C:\Windows\system32\wbem\wbemprox.dll (WMI/Microsoft Corporation) 0x6E7A0000
Library C:\Windows\system32\wbemcomn.dll (WMI/Microsoft Corporation) 0x6E6B0000
Library C:\Windows\system32\wbem\wbemsvc.dll (WMI/Microsoft Corporation) 0x6E230000
Library C:\Windows\system32\imapi2.dll (Image Mastering API v2/Microsoft Corporation) 0x6CCB0000
Library C:\Windows\system32\wbem\fastprox.dll (WMI Custom Marshaller/Microsoft Corporation) 0x6DC90000
Library C:\Windows\system32\NTDSAPI.dll (Active Directory Domain Services API/Microsoft Corporation) 0x753E0000
Library C:\Program Files\WinSCP\DragExt.dll (Drag&Drop shell extension for WinSCP (32-bit)/Martin Prikryl) 0x03EF0000
Library C:\Windows\system32\mssprxy.dll (mssprxy.dll/Microsoft Corporation) 0x6D9E0000
Library C:\Windows\System32\DreamScene.dll (Microsoft Windows Vista Ultimate Extra: Windows DreamScene/Microsoft Corporation) 0x6CC70000
Library C:\Windows\System32\d3d9.dll (Microsoft Direct3D/Microsoft Corporation) 0x72F10000
Library C:\Windows\System32\d3d8thk.dll (Microsoft Direct3D OS Thunk Layer/Microsoft Corporation) 0x72F00000
Library C:\Windows\

pancakejohn · « **Reply #33 on:** April 23, 2010, 01:56:11 PM »

Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCP80.dll (Microsoft® C++ Runtime Library/Microsoft Corporation) 0x70A40000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCR80.dll (Microsoft® C Runtime Library/Microsoft Corporation) 0x71AA0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\fssync.dll (FSSYNC.DLL/Kaspersky Lab) 0x6D380000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\FLTLIB.DLL (Filter Library/Microsoft Corporation) 0x711A0000
Library C:\Windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x00190000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\system32\uxtheme.dll (Microsoft UxTheme Library/Microsoft Corporation) 0x74830000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\Ushata.dll (Ushata module/Kaspersky Lab) 0x6DAA0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\CLLDR.DLL (CLLDR/Kaspersky Lab) 0x6D330000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\prloader.dll (Prague Loader/Kaspersky Lab) 0x6D8D0000
Library C:\Windows\system32\userenv.dll (Userenv/Microsoft Corporation) 0x75810000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\pxstub.ppl (Proxy Stubs/Kaspersky Lab) 0x6E730000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\params.ppl (Structure Serializer/Kaspersky Lab) 0x6E420000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\winreg.ppl (WINREG/Kaspersky Lab) 0x6ED30000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\mkavio.ppl (64-bit IO wrapper/Kaspersky Lab) 0x6E320000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\hashmd5.ppl (HASHMD5/Kaspersky Lab) 0x6E050000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\nfio.ppl (NFIO/Kaspersky Lab) 0x6E3A0000
Library C:\Windows\system32\MPR.dll (Multiple Provider Router DLL/Microsoft Corporation) 0x753A0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\fsdrvplg.ppl (Plugin for FSDrv/Kaspersky Lab) 0x6E040000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avpgui.ppl (Kaspersky Anti-Virus GUI Logic/Kaspersky Lab) 0x6DC10000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\basegui.ppl (Kaspersky Anti-Virus GUI Windows part/Kaspersky Lab) 0x6DD80000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x74B70000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x01BB0000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\thpimpl.ppl (Thread Pool/Kaspersky Lab) 0x6EA80000
Library C:\Windows\system32\wtsapi32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Windows\system32\WINSTA.dll (Winstation Library/Microsoft Corporation) 0x750A0000

Process C:\Program Files\Common Files\Java\Java Update\jusched.exe (Java(TM) Update Scheduler/Sun Microsystems, Inc.) 2172
Library C:\Program Files\Common Files\Java\Java Update\jusched.exe (Java(TM) Update Scheduler/Sun Microsystems, Inc.) 0x00400000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\WININET.dll (Internet Extensions for Win32/Microsoft Corporation) 0x762A0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\system32\Normaliz.dll (Unicode Normalization DLL/Microsoft Corporation) 0x77400000
Library C:\Windows\system32\urlmon.dll (OLE32 Extensions for Win32/Microsoft Corporation) 0x760D0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\system32\iertutil.dll (Run time utility for Internet Explorer/Microsoft Corporation) 0x76460000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\uxtheme.dll (Microsoft UxTheme Library/Microsoft Corporation) 0x74830000

Process C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe (Adobe Acrobat SpeedLauncher/Adobe Systems Incorporated) 2212
Library C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe (Adobe Acrobat SpeedLauncher/Adobe Systems Incorporated) 0x00400000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCP80.dll (Microsoft® C++ Runtime Library/Microsoft Corporation) 0x70A40000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCR80.dll (Microsoft® C Runtime Library/Microsoft Corporation) 0x71AA0000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\uxtheme.dll (Microsoft UxTheme Library/Microsoft Corporation) 0x74830000

Process C:\Program Files\Windows Sidebar\sidebar.exe (Windows Sidebar/Microsoft Corporation) 2304
Library C:\Program Files\Windows Sidebar\sidebar.exe (Windows Sidebar/Microsoft Corporation) 0x007F0000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\ATL.DLL (ATL Module for Windows XP (Unicode)/Microsoft Corporation) 0x73D70000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\COMCTL32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) 0x74100000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\urlmon.dll (OLE32 Extensions for Win32/Microsoft Corporation) 0x760D0000
Library C:\Windows\system32\iertutil.dll (Run time utility for Internet Explorer/Microsoft Corporation) 0x76460000
Library C:\Windows\system32\CRYPT32.dll (Crypto API32/Microsoft Corporation) 0x752A0000
Library C:\Windows\system32\MSASN1.dll (ASN.1 Runtime APIs/Microsoft Corporation) 0x75400000
Library C:\Windows\system32\USERENV.dll (Userenv/Microsoft Corporation) 0x75810000
Library C:\Windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\system32\sfc.dll (Windows File Protection/Microsoft Corporation) 0x72EB0000
Library C:\Windows\system32\sfc_os.DLL (Windows File Protection/Microsoft Corporation) 0x71120000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\system32\dwmapi.dll (Microsoft Desktop Window Manager API/Microsoft Corporation) 0x73C50000
Library C:\Windows\system32\CRYPTUI.dll (Microsoft Trust UI Provider/Microsoft Corporation) 0x6F650000
Library C:\Windows\system32\WINTRUST.dll (Microsoft Trust Verification APIs/Microsoft Corporation) 0x74AB0000
Library C:\Windows\system32\imagehlp.dll (Windows NT Image Helper/Microsoft Corporation) 0x75C40000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) &nbs

pancakejohn · « **Reply #34 on:** April 23, 2010, 01:57:02 PM »

Library C:\Windows\system32\imagehlp.dll (Windows NT Image Helper/Microsoft Corporation) 0x75C40000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x74B70000
Library C:\Windows\system32\UxTheme.dll (Microsoft UxTheme Library/Microsoft Corporation) 0x74830000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Windows\system32\msiltcfg.dll (Windows Installer Configuration API Stub/Microsoft Corporation) 0x70F10000
Library C:\Windows\system32\msi.dll (Windows Installer/Microsoft Corporation) 0x71520000
Library C:\Windows\system32\SXS.DLL (Fusion 2.5/Microsoft Corporation) 0x756D0000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000
Library C:\Windows\system32\WTSAPI32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Windows\system32\WINSTA.dll (Winstation Library/Microsoft Corporation) 0x750A0000
Library C:\Windows\system32\Wlanapi.dll (Windows WLAN AutoConfig Client Side API DLL/Microsoft Corporation) 0x709B0000
Library C:\Windows\system32\OneX.DLL (IEEE 802.1X supplicant library/Microsoft Corporation) 0x6F4D0000
Library C:\Windows\system32\eappprxy.dll (Microsoft EAPHost Peer Client DLL/Microsoft Corporation) 0x70A20000
Library C:\Windows\system32\eappcfg.dll (Eap Peer Config/Microsoft Corporation) 0x70980000
Library C:\Windows\system32\DUser.dll (Windows DirectUser Engine/Microsoft Corporation) 0x74800000
Library C:\Windows\system32\OLEACC.dll (Active Accessibility Core Component/Microsoft Corporation) 0x74040000
Library C:\Windows\system32\bcrypt.dll (Windows Cryptographic Primitives Library/Microsoft Corporation) 0x750D0000
Library C:\Windows\system32\wlanutil.dll (Windows Wireless LAN 802.11 Utility DLL/Microsoft Corporation) 0x70970000
Library C:\Windows\System32\msxml3.dll (MSXML 3.0 SP10/Microsoft Corporation) 0x70FE0000
Library C:\Windows\system32\WININET.dll (Internet Extensions for Win32/Microsoft Corporation) 0x762A0000
Library C:\Windows\system32\Normaliz.dll (Unicode Normalization DLL/Microsoft Corporation) 0x77400000
Library C:\Windows\system32\mshtml.dll (Microsoft (R) HTML Viewer/Microsoft Corporation) 0x6E970000
Library C:\Windows\system32\msls31.dll (Microsoft Line Services library file/Microsoft Corporation) 0x74410000
Library C:\Windows\system32\NTMARTA.DLL (Windows NT MARTA provider/Microsoft Corporation) 0x74C80000
Library C:\Windows\system32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\System32\Branding\folderbg\VistaFolderBackground.dll (COM Explorer Injector and HOOK DLL/Andreas Verhoeven) 0x10000000
Library C:\Windows\system32\COMDLG32.dll (Common Dialogs DLL/Microsoft Corporation) 0x76390000
Library C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.DLL (ATL Module for Windows (Unicode)/Microsoft Corporation) 0x71C40000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCR80.dll (Microsoft® C Runtime Library/Microsoft Corporation) 0x71AA0000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCP80.dll (Microsoft® C++ Runtime Library/Microsoft Corporation) 0x70A40000
Library C:\Windows\system32\MLANG.dll (Multi Language Support DLL/Microsoft Corporation) 0x6D9F0000
Library C:\Windows\system32\msimtf.dll (Active IMM Server DLL/Microsoft Corporation) 0x6D810000
Library C:\Windows\system32\ieframe.dll (Internet Explorer/Microsoft Corporation) 0x6F740000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\scrchpg.dll (Script Checker/Kaspersky Lab) 0x6D940000
Library C:\Windows\system32\jscript.dll (Microsoft (R) JScript/Microsoft Corporation) 0x6C820000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klscav.dll (Script Checker AV Plugin/Kaspersky Lab) 0x6D500000
Library C:\Windows\system32\wbem\wbemdisp.dll (WMI Scripting/Microsoft Corporation) 0x6CBF0000
Library C:\Windows\system32\wbemcomn.dll (WMI/Microsoft Corporation) 0x6E6B0000
Library C:\Windows\system32\wbem\wbemprox.dll (WMI/Microsoft Corporation) 0x6E7A0000
Library C:\Windows\system32\wbem\wmiutils.dll (WMI/Microsoft Corporation) 0x6DE40000
Library C:\Windows\system32\wbem\wbemsvc.dll (WMI/Microsoft Corporation) 0x6E230000
Library C:\Windows\system32\wbem\fastprox.dll (WMI Custom Marshaller/Microsoft Corporation) 0x6DC90000
Library C:\Windows\system32\NTDSAPI.dll (Active Directory Domain Services API/Microsoft Corporation) 0x753E0000
Library C:\Windows\system32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Program Files\Windows Sidebar\wlsrvc.dll (Windows Live Services/Microsoft Corporation) 0x6C550000
Library C:\Windows\system32\RASAPI32.dll (Remote Access API/Microsoft Corporation) 0x6F370000
Library C:\Windows\system32\rasman.dll (Remote Access Connection Manager/Microsoft Corporation) 0x6F350000
Library C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation) 0x6F140000
Library C:\Windows\system32\rtutils.dll (Routing Utilities/Microsoft Corporation) 0x74380000
Library C:\Windows\system32\WINMM.dll (MCI API DLL/Microsoft Corporation) 0x74080000
Library C:\Windows\system32\credssp.dll (TS Single Sign On Security Package/Microsoft Corporation) 0x75090000
Library C:\Windows\system32\schannel.dll (TLS / SSL Security Provider/Microsoft Corporation) 0x74D10000
Library C:\Windows\system32\msv1_0.dll (Microsoft Authentication Package v1.0/Microsoft Corporation) 0x74F40000
Library C:\Windows\system32\cryptdll.dll (Cryptography Manager/Microsoft Corporation) 0x75470000
Library C:\Windows\system32\ImgUtil.dll (IE plugin image decoder support DLL/Microsoft Corporation) 0x6C5E0000
Library C:\Windows\system32\pngfilt.dll (IE PNG plugin image decoder/Microsoft Corporation) 0x6C570000
Library C:\Program Files\Common Files\Microsoft Shared\VGX\vgx.dll (Microsoft Vector Graphics Rendering(VML)/Microsoft Corporation) 0x6C3B0000
Library C:\Windows\system32\sensapi.dll (SENS Connectivity API DLL/Microsoft Corporation) 0x711F0000
Library C:\Windows\system32\mswsock.dll (Microsoft Windows Sockets 2.0 Service Provider/Microsoft Corporation) 0x74F80000
Library C:\Windows\System32\wshtcpip.dll (Winsock2 Helper DLL (TL/IPv4)/Microsoft Corporation) 0x74C40000
Library C:\Windows\system32\mscms.dll (Microsoft Color Matching System DLL/Microsoft Corporation) 0x6C4E0000
Library C:\Windows\system32\WINSPOOL.DRV (Windows Spooler Driver/Microsoft Corporation) 0x73ED0000
Library C:\Windows\system32\wshom.ocx (Windows Script Host Runtime Library/Microsoft Corporation) 0x6C480000
Library C:\Windows\system32\MPR.dll (Multiple Provider Router DLL/Microsoft Corporation) 0x753A0000
Library C:\Windows\system32\ScrRun.dll (Microsoft (R) Script Runtime/Microsoft Corporation) 0x6C4B0000
Library C:\Windows\system32\icm32.dll (Microsoft Color Management Module (CMM)/Microsoft Corporation) 0x6C370000
Library C:\Windows\system32\mscoree.dll (Microsoft .NET Runtime Execution Engine/Microsoft Corporation) 0x6C7D0000
Library C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll (Microsoft .NET Runtime Common Language Runtime - WorkStation/Microsoft Corporation) 0x6BCB0000
Library C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\17f572b09facdc5fda9431558eb7a26e\mscorlib.ni.dll (Microsoft Common Language Runtime Class Library/Microsoft Corporation) 0x68DE0000
Library C:\Users\Administrator\AppData\Local\Microsoft\Windows Sidebar\Gadgets\IntelCoreSeries24.gadget\IntelDTSReader.dll (IntelDTSReader/Orbmu2k) 0x6CD40000
Library C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll (Microsoft .NET Runtime Just-In-Time Compiler/Microsoft Corporation) 0x6C310000
Library C:\Windows\system32\shfolder.dll (Shell Folder Service/Microsoft Corporation) 0x6E7B0000
Library C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll (.NET Framework/Microsoft Corporation) 0x6B6B0000
Library C:\Windows\system32\ddrawex.dll (Direct Draw Ex/Microsoft Corporation) 0x6C8F0000
Library C:\Windows\system32\DDRAW.dll (Microsoft DirectDraw/Microsoft Corporation) 0x6B3E0000
Library C:\Windows\system32\DCIMAN32.dll (DCI Manager/Microsoft Corporation) 0x6C900000
Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 191.07 /NVIDIA Corporation) 0x721A0000
Library C:\Windows\system32\powrprof.dll (Power Profile Helper DLL/Microsoft Corporation) 0x74C60000
Library C:\Windows\system32\D3DIM700.DLL (Microsoft Direct3D/Microsoft Corporation) 0x6B1E0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\prremote.dll (PR_REMOTE/Kaspersky Lab) 0x6D900000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\prloader.dll (Prague Loader/Kaspersky Lab) 0x6D8D0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\params.ppl (Structure Serializer/Kaspersky Lab) 0x6E420000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\pxstub.ppl (Proxy Stubs/Kaspersky Lab) 0x6E730000
Library C:\Windows\system32\wbem\WmiPerfInst.dll (WbemPerf V2 Instance Provider/Microsoft Corporation) 0x6C940000
Library C:\Windows\system32\pdh.dll (Windows Performance Data Helper DLL/Microsoft Corporation) 0x6CC30000
Library C:\Windows\system32\Perfctrs.dll (Performance Counters/Microsoft Corporation) 0x6C600000
Library C:\Windows\system32\IPHLPAPI.DLL (IP Helper API/Microsoft Corporation) 0x751F0000
Library C:\Windows\system32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library C:\Windows\system32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) 0x751A0000
Library C:\Windows\system32\dhcpcsvc6.DLL (DHCPv6 Client/Microsoft Corporation) 0x75170000
Library C:\Windows\system32\Dxtrans.dll (DirectX Media -- DirectX Transform Core/Microsoft Corporation) 0x6ADF0000
Library C:\Users\Administrator\AppData\Local\Microsoft\Windows Sidebar\Gadgets\IntelCoreSeries24.gadget\WinRing0.dll (WinRing0/OpenLibSys.org) 0x03980000
Library C:\Windows\system32\Dxtmsft.dll (DirectX Media -- Image DirectX Transforms/Microsoft Corporation) 0x6AD30000

Process C:\Program Files\Sprint\Mobile Broadband\SMBAUtilSvc.exe (CMSPCSUtilSvc/SprintNextel) 2516
Library C:\Program Files\Sprint\Mobile Broadband\SMBAUtilSvc.exe (CMSPCSUtilSvc/SprintNextel) 0x00400000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\iphlpapi.dll (IP Helper API/Microsoft Corporation) 0x751F0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library C:\Windows\system32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\system32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) &n

pancakejohn · « **Reply #35 on:** April 23, 2010, 01:57:42 PM »

Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\thpimpl.ppl (Thread Pool/Kaspersky Lab) 0x6EA80000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ndetect.ppl (Nertwork Detection/Kaspersky Lab) 0x6E350000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\crpthlpr.ppl (CryptoHelper/Kaspersky Lab) 0x6DFB0000
Library C:\Windows\system32\CRYPT32.dll (Crypto API32/Microsoft Corporation) 0x752A0000
Library C:\Windows\system32\MSASN1.dll (ASN.1 Runtime APIs/Microsoft Corporation) 0x75400000
Library C:\Windows\system32\wtsapi32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\dtreg.ppl (DTREG/Kaspersky Lab) 0x6DFF0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\sfdb.ppl (SFDB/Kaspersky Lab) 0x6E9B0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\schedule.ppl (Scheduler/Kaspersky Lab) 0x6E9A0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\timer.ppl (Timer/Kaspersky Lab) 0x6EA90000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\report.ppl (Report System/Kaspersky Lab) 0x6E790000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\reportdb.ppl (Report DB System/Kaspersky Lab) 0x6E7A0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\lic.ppl (Licensing Library/Kaspersky Lab) 0x6E210000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\icheck3.ppl (ichecker and iswift tech/Kaspersky Lab) 0x6E150000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avs.ppl (AV Server/Kaspersky Lab) 0x6DCF0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avlib.ppl (Anti-Virus functions library/Kaspersky Lab) 0x6DBD0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avspm.ppl (AV Server Performance Monitor/Kaspersky Lab) 0x6DD30000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\dmap.ppl (Direct Mapper plugin/Kaspersky Lab) 0x6DFE0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\qb.ppl (QBStorage/Kaspersky Lab) 0x6E740000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\procmon.ppl (Process Monitor/Kaspersky Lab) 0x6E5E0000
Library C:\Windows\system32\WSOCK32.dll (Windows Socket 32-Bit DLL/Microsoft Corporation) 0x74400000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\sandbox.ppl (Virtual environment for executing applications/Kaspersky Lab) 0x6E960000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klsrlsvc.ppl (KLSRL transport service/Kaspersky Lab) 0x6E1D0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\propmap.ppl (PROPMAP/Kaspersky Lab) 0x6E670000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\filemap.ppl (File Mapping Helper/Kaspersky Lab) 0x6E030000
Library C:\Windows\system32\NLAapi.dll (Network Location Awareness 2/Microsoft Corporation) 0x74030000
Library C:\Windows\system32\napinsp.dll (E-mail Naming Shim Provider/Microsoft Corporation) 0x713C0000
Library C:\Windows\system32\pnrpnsp.dll (PNRP Name Space Provider/Microsoft Corporation) 0x711D0000
Library C:\Windows\System32\mswsock.dll (Microsoft Windows Sockets 2.0 Service Provider/Microsoft Corporation) 0x74F80000
Library C:\Windows\System32\winrnr.dll (LDAP RnR Provider DLL/Microsoft Corporation) 0x71200000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000
Library C:\Windows\System32\wshtcpip.dll (Winsock2 Helper DLL (TL/IPv4)/Microsoft Corporation) 0x74C40000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\kavbase.kdl (AV engine/Kaspersky Lab ZAO) 0x6C250000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\syswatch.ppl (SysWatch/Kaspersky Lab) 0x6EA60000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\netwatch.ppl (Network Watcher/Kaspersky Lab) 0x6E380000
Library C:\Windows\system32\RASAPI32.dll (Remote Access API/Microsoft Corporation) 0x6F370000
Library C:\Windows\system32\rasman.dll (Remote Access Connection Manager/Microsoft Corporation) 0x6F350000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation) 0x6F140000
Library C:\Windows\system32\rtutils.dll (Routing Utilities/Microsoft Corporation) 0x74380000
Library C:\Windows\system32\WINMM.dll (MCI API DLL/Microsoft Corporation) 0x74080000
Library C:\Windows\system32\OLEACC.dll (Active Accessibility Core Component/Microsoft Corporation) 0x74040000
Library C:\Windows\system32\wlanapi.dll (Windows WLAN AutoConfig Client Side API DLL/Microsoft Corporation) 0x709B0000
Library C:\Windows\system32\OneX.DLL (IEEE 802.1X supplicant library/Microsoft Corporation) 0x6F4D0000
Library C:\Windows\system32\eappprxy.dll (Microsoft EAPHost Peer Client DLL/Microsoft Corporation) 0x70A20000
Library C:\Windows\system32\eappcfg.dll (Eap Peer Config/Microsoft Corporation) 0x70980000
Library C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) 0x74100000
Library C:\Windows\system32\DUser.dll (Windows DirectUser Engine/Microsoft Corporation) 0x74800000
Library C:\Windows\system32\UxTheme.dll (Microsoft UxTheme Library/Microsoft Corporation) 0x74830000
Library C:\Windows\system32\bcrypt.dll (Windows Cryptographic Primitives Library/Microsoft Corporation) 0x750D0000
Library C:\Windows\system32\wlanutil.dll (Windows Wireless LAN 802.11 Utility DLL/Microsoft Corporation) 0x70970000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\hips.ppl (HIPS/Kaspersky Lab) 0x6E070000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\CKAHUM.dll (Kaspersky Anti-Hacker User Mode Component/Kaspersky Lab) 0x6D2D0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\CKAHComm.dll (Kaspersky Anti-Hacker Communication Library/Kaspersky Lab) 0x6D260000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ckahrule.dll (Kaspersky Anti-Hacker Rules Manager/Kaspersky Lab) 0x6D270000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\CKAHStat.dll (Kaspersky Anti-Hacker Statistic Componet/Kaspersky Lab) 0x6D2A0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\antispam.ppl (AntiSpam mail fiter/Kaspersky Lab) 0x6DB30000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\oas.ppl (File Monitor/Kaspersky Lab) 0x6E3E0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\volenum.ppl (Volume enumeration/Kaspersky Lab) 0x6ECD0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\imc.ppl (IM Checker Monitor/Kaspersky Lab) 0x6E190000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avpgs.ppl (Driver Communication Module/Kaspersky Lab) 0x6DBF0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\sc.ppl (ScriptChecker/Kaspersky Lab) 0x6E990000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\httpscan.ppl (HTTP Scanner/Kaspersky Lab) 0x6E140000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ahids.ppl (ids task/Kaspersky Lab) 0x6DB20000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\mc.ppl (Mail Monitor/Kaspersky Lab) 0x6E2C0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\pdm2rt.ppl (Behavior PDM2rt/Kaspersky Lab) 0x6E4F0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\smtpprtc.ppl (SMTP Protocoller/Kaspersky Lab) 0x6E9C0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\pop3prtc.ppl (POP3 Protocoller/Kaspersky Lab) 0x6E5D0000
Library C:\Windows\system32\wintrust.dll (Microsoft Trust Verification APIs/Microsoft Corporation) 0x74AB0000
Library C:\Windows\system32\imagehlp.dll (Windows NT Image Helper/Microsoft Corporation) 0x75C40000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\trafmon2.ppl (Traffic Monitor/Kaspersky Lab) 0x6EAD0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\maildisp.ppl (MailDispatcher/Kaspersky Lab) 0x6E270000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\imapprtc.ppl (IMAP Protocoller/Kaspersky Lab) 0x6E170000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\nntpprtc.ppl (NNTP Protocoller/Kaspersky Lab) 0x6E3C0000
Library C:\Windows\system32\ncrypt.dll (Windows cryptographic library/Microsoft Corporation) 0x75120000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\urlflt.ppl (UrlFiltering/Kaspersky Lab) 0x6EC40000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\webnetstat.ppl (Web Network Statistics/Kaspersky Lab) 0x6ECF0000
Library C:\Windows\system32\NTMARTA.DLL (Windows NT MARTA provider/Microsoft Corporation) 0x74C80000
Library C:\Windows\system32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\system32\GPAPI.dll (Group Policy Client API/Microsoft Corporation) 0x74EE0000
Library C:\Windows\system32\slc.dll (Software Licensing Client Dll/Microsoft Corporation) 0x75260000
Library C:\Windows\system32\cryptnet.dll (Crypto Network Related API/Microsoft Corporation) 0x70C50000
Library C:\Windows\system32\SensApi.dll (SENS Connectivity API DLL/Microsoft Corporation) 0x711F0000
Library C:\Windows\system32\Cabinet.dll (Microsoft® Cabinet File API/Microsoft Corporation) 0x74770000
Library C:\Windows\System32\wship6.dll (Winsock2 Helper DLL (TL/IPv6)/Microsoft Corporation) 0x75060000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\kjim.kdl (Script Heuristics Engine/Kaspersky Lab ZAO) 0x38800000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\vlns.kdl (Vulnerability scanner/Kaspersky Lab) 0x38200000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\klavemu.kdl (Heuristics engine/Kaspersky Lab) 0x38400000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avzkrnl.dll 0x6D040000
Library C:\Windows\system32\winspool.drv (Windows Spooler Driver/Microsoft Corporation) 0x73ED0000
Library C:\Windows\system32\wininet.dll (Internet Extensions for Win32/Microsoft Corporation) 0x762A0000
Library C:\Windows\system32\Normaliz.dll (Unicode Normalization DLL/Microsoft Corporation) 0x77400000
Library C:\Windows\system32\urlmon.dll (OLE32 Extensions for Win32/Microsoft Corporation) 0x760D0000
Library C:\Windows\system32\iertutil.dll (Run time utility for Internet Explorer/Microsoft Corporation) 0x76460000
Library C:\Windows\system32\comdlg32.dll (Common Dialogs DLL/Microsoft Corporation) 0x76390000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\mark.kdl (Anti-Rootkit Engine/Kaspersky Lab) 0x38300000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\qscan.kdl (Initial Scan Engine/Kaspersky Lab) 0x38C00000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\kavsys.kdl (set of system interfaces/Kaspersky Lab) 0x38D00000
Library C:\Windows\system32\msi.dll (Windows Installer/Microsoft Corporation) 0x71520000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\EXTLprtc.ppl (External Protocoller task/Kaspersky Lab) 0x6E010000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ICQprtc.dll (ICQ Protocoller/Kaspersky Lab) 0x6D410000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\webav.kdl (WebAV engine/Kaspersky Lab) 0x10000000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\MSNprtc.dll (MSN Protocoller/Kaspersky Lab) 0x6D810000
Library C:\ProgramData\Kaspersky Lab\AVP9\Bases\pdm.kdl (AV engine/Kaspersky Lab) 0x6B1A0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\httpanlz.ppl (HTTP Protocoller/Kaspersky Lab) 0x6E0E0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\JbrPrtc.dll (Jabber Protocoller/Kaspersky Lab) 0x6D460000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\IRCPrtc.dll (IRC Protocoller/Kaspersky Lab) 0x6D440000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\uniarc.ppl (UniArchiver plugin/Kaspersky Lab) 0x6EBF0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\mdb.ppl (MDB/Kaspersky Lab) 0x6E2D0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\minizip.ppl (ZIP MiniArchiver plugin/Kaspersky Lab) 0x6E310000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\Yhoprtc.dll (Yahoo Protocoller/Kaspersky Lab) 0x6DAD0000
Library C:\Windows\system32\mapi32.dll (Extended MAPI 1.0 for Windows NT/Microsoft Corporation) 0x6C2B0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\cab.ppl (CAB MiniArchiver plugin/Kaspersky Lab) 0x6DF90000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\arj.ppl (ARJ MiniArchiver plugin/Kaspersky Lab) 0x6DBB0000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\msoe.ppl (MSOE/Kaspersky Lab) 0x6E330000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\rar.ppl (RAR/Kaspersky Lab) 0x6E760000
Library C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\MMPprtc.dll *Blocked Russian URL* Agent Protocoller/Kaspersky Lab) &nbs

pancakejohn · « **Reply #36 on:** April 23, 2010, 01:58:43 PM »

Library C:\Windows\system32\wbem\wbemsvc.dll (WMI/Microsoft Corporation) 0x6E230000
Library C:\Windows\system32\wbem\fastprox.dll (WMI Custom Marshaller/Microsoft Corporation) 0x6DC90000
Library C:\Windows\system32\NTDSAPI.dll (Active Directory Domain Services API/Microsoft Corporation) 0x753E0000
Library C:\Windows\system32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\system32\wbem\wmiutils.dll (WMI/Microsoft Corporation) 0x6DE40000
Library C:\Windows\system32\wbem\wmiprov.dll (WMI/Microsoft Corporation) 0x6CB90000
Library C:\Windows\system32\WMI.dll (WMI DC and DP functionality/Microsoft Corporation) 0x71190000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2676
Library C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 0x00940000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library c:\windows\system32\ipsecsvc.dll (Windows IPsec SPD Server DLL/Microsoft Corporation) 0x6F080000
Library c:\windows\system32\AUTHZ.dll (Authorization Framework/Microsoft Corporation) 0x757D0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library c:\windows\system32\IPHLPAPI.DLL (IP Helper API/Microsoft Corporation) 0x751F0000
Library c:\windows\system32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library c:\windows\system32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library c:\windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library c:\windows\system32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) 0x751A0000
Library c:\windows\system32\dhcpcsvc6.DLL (DHCPv6 Client/Microsoft Corporation) 0x75170000
Library c:\windows\system32\CRYPT32.dll (Crypto API32/Microsoft Corporation) 0x752A0000
Library c:\windows\system32\MSASN1.dll (ASN.1 Runtime APIs/Microsoft Corporation) 0x75400000
Library c:\windows\system32\USERENV.dll (Userenv/Microsoft Corporation) 0x75810000
Library c:\windows\system32\fwpuclnt.dll (FWP/IPsec User-Mode API/Microsoft Corporation) 0x73570000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library c:\windows\system32\FirewallAPI.dll (Windows Firewall API/Microsoft Corporation) 0x74B90000
Library c:\windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library c:\windows\system32\FwRemoteSvr.DLL (Windows Firewall Remote APIs Server/Microsoft Corporation) 0x6F330000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Windows\system32\credssp.dll (TS Single Sign On Security Package/Microsoft Corporation) 0x75090000
Library C:\Windows\system32\schannel.dll (TLS / SSL Security Provider/Microsoft Corporation) 0x74D10000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\mswsock.dll (Microsoft Windows Sockets 2.0 Service Provider/Microsoft Corporation) 0x74F80000
Library C:\Windows\System32\wshtcpip.dll (Winsock2 Helper DLL (TL/IPv4)/Microsoft Corporation) 0x74C40000
Library C:\Windows\System32\wship6.dll (Winsock2 Helper DLL (TL/IPv6)/Microsoft Corporation) 0x75060000

Process C:\Program Files\CyberLink\Shared files\RichVideo.exe 2696
Library C:\Program Files\CyberLink\Shared files\RichVideo.exe 0x00400000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\MSVCRT.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000

Process C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Stereo Vision Control Panel API Server/NVIDIA Corporation) 2804
Library C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Stereo Vision Control Panel API Server/NVIDIA Corporation) 0x00400000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\system32\OLEACC.dll (Active Accessibility Core Component/Microsoft Corporation) 0x74040000
Library C:\Windows\system32\WINSPOOL.DRV (Windows Spooler Driver/Microsoft Corporation) 0x73ED0000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\Cabinet.dll (Microsoft® Cabinet File API/Microsoft Corporation) 0x74770000
Library C:\Windows\system32\NTMARTA.DLL (Windows NT MARTA provider/Microsoft Corporation) 0x74C80000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2900
Library C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 0x00940000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library c:\windows\system32\wiaservc.dll (Still Image Devices Service/Microsoft Corporation) 0x6EF40000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library c:\windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\system32\COMDLG32.dll (Common Dialogs DLL/Microsoft Corporation)

pancakejohn · « **Reply #37 on:** April 23, 2010, 01:59:29 PM »

Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Windows\system32\msstrc.dll (msstrc.dll/Microsoft Corporation) 0x6EFC0000
Library C:\Windows\system32\credssp.dll (TS Single Sign On Security Package/Microsoft Corporation) 0x75090000
Library C:\Windows\system32\schannel.dll (TLS / SSL Security Provider/Microsoft Corporation) 0x74D10000
Library C:\Windows\system32\mssrch.dll (mssrch.dll/Microsoft Corporation) 0x6E080000
Library C:\Windows\system32\WTSAPI32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Windows\system32\dbghelp.dll (Windows Image Helper/Microsoft Corporation) 0x6DFA0000
Library C:\Windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\system32\Msidle.dll (User Idle Monitor/Microsoft Corporation) 0x6F040000
Library C:\Windows\system32\WINSTA.dll (Winstation Library/Microsoft Corporation) 0x750A0000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000
Library C:\Windows\system32\propdefs.dll (propdefs.dll/Microsoft Corporation) 0x6DF30000
Library C:\Windows\system32\en-us\tQuery.dll.mui (tquery.dll/Microsoft Corporation) 0x6D940000
Library C:\Windows\system32\esent.dll (Extensible Storage Engine for Microsoft(R) Windows(R)/Microsoft Corporation) 0x6D470000
Library C:\Windows\system32\msscb.dll (msscb.dll/Microsoft Corporation) 0x6DB60000
Library C:\Windows\system32\mssprxy.dll (mssprxy.dll/Microsoft Corporation) 0x6D9E0000
Library C:\Windows\system32\VSSAPI.DLL (Microsoft® Volume Shadow Copy Requestor/Writer Services API DLL/Microsoft Corporation) 0x6F3C0000
Library C:\Windows\system32\ATL.DLL (ATL Module for Windows XP (Unicode)/Microsoft Corporation) 0x73D70000
Library C:\Windows\system32\vsstrace.dll (Microsoft® Volume Shadow Copy Requestor/Writer tracing DLL/Microsoft Corporation) 0x74340000
Library C:\Windows\system32\AUTHZ.dll (Authorization Framework/Microsoft Corporation) 0x757D0000
Library C:\Windows\system32\XmlLite.dll (Microsoft XmlLite Library/Microsoft Corporation) 0x747A0000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\system32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\system32\es.dll (COM+/Microsoft Corporation) 0x73AD0000
Library C:\Windows\system32\SXS.DLL (Fusion 2.5/Microsoft Corporation) 0x756D0000

Process C:\Program Files\VMware\VMware Player\vmware-authd.exe (VMware Authorization Service/VMware, Inc.) 3132
Library C:\Program Files\VMware\VMware Player\vmware-authd.exe (VMware Authorization Service/VMware, Inc.) 0x00400000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCR80.dll (Microsoft® C Runtime Library/Microsoft Corporation) 0x71AA0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\NETAPI32.dll (Net Win32 API DLL/Microsoft Corporation) 0x75650000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\PSAPI.DLL (Process Status Helper/Microsoft Corporation) 0x75950000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\IPHLPAPI.DLL (IP Helper API/Microsoft Corporation) 0x751F0000
Library C:\Windows\system32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library C:\Windows\system32\DNSAPI.dll (DNS Client API DLL/Microsoft Corporation) 0x75440000
Library C:\Windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\system32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) 0x751A0000
Library C:\Windows\system32\dhcpcsvc6.DLL (DHCPv6 Client/Microsoft Corporation) 0x75170000
Library C:\Program Files\VMware\VMware Player\vmwarebase.DLL (VMware base library/VMware, Inc.) 0x11100000
Library C:\Program Files\VMware\VMware Player\vmcryptolib.DLL (VMware Software Cryptographic Implementation v1.0/VMware, Inc.) 0x10000000
Library C:\Windows\system32\WINMM.dll (MCI API DLL/Microsoft Corporation) 0x74080000
Library C:\Windows\system32\OLEACC.dll (Active Accessibility Core Component/Microsoft Corporation) 0x74040000
Library C:\Windows\system32\WININET.dll (Internet Extensions for Win32/Microsoft Corporation) 0x762A0000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\system32\Normaliz.dll (Unicode Normalization DLL/Microsoft Corporation) 0x77400000
Library C:\Windows\system32\urlmon.dll (OLE32 Extensions for Win32/Microsoft Corporation) 0x760D0000
Library C:\Windows\system32\iertutil.dll (Run time utility for Internet Explorer/Microsoft Corporation) 0x76460000
Library C:\Windows\system32\MPR.dll (Multiple Provider Router DLL/Microsoft Corporation) 0x753A0000
Library C:\Windows\system32\USERENV.dll (Userenv/Microsoft Corporation) 0x75810000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\CRYPT32.dll (Crypto API32/Microsoft Corporation) 0x752A0000
Library C:\Windows\system32\MSASN1.dll (ASN.1 Runtime APIs/Microsoft Corporation) 0x75400000
Library C:\Windows\system32\WINSPOOL.DRV (Windows Spooler Driver/Microsoft Corporation) 0x73ED0000
Library C:\Windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\system32\WINHTTP.dll (Windows HTTP Services/Microsoft Corporation) 0x73510000
Library C:\Program Files\VMware\VMware Player\libxml2.dll 0x00160000
Library C:\Windows\system32\WSOCK32.dll (Windows Socket 32-Bit DLL/Microsoft Corporation) 0x74400000
Library C:\Program Files\VMware\VMware Player\iconv.dll (LGPLed libiconv for Windows NT/2000/XP and Windows 95/98/ME/Free Software Foundation) 0x00B20000
Library C:\Program Files\VMware\VMware Player\zlib1.dll 0x00250000
Library C:\Windows\system32\WLDAP32.dll (Win32 LDAP API DLL/Microsoft Corporation) 0x76410000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\system32\shfolder.dll (Shell Folder Service/Microsoft Corporation) 0x6E7B0000
Library C:\Windows\system32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000
Library C:\Windows\system32\mswsock.dll (Microsoft Windows Sockets 2.0 Service Provider/Microsoft Corporation) 0x74F80000
Library C:\Windows\System32\wshtcpip.dll (Winsock2 Helper DLL (TL/IPv4)/Microsoft Corporation) 0x74C40000
Library C:\Windows\system32\NTMARTA.DLL (Windows NT MARTA provider/Microsoft Corporation) 0x74C80000
Library C:\Windows\system32\perfos.dll (Windows System Performance Objects DLL/Microsoft Corporation) 0x6C7C0000
Library C:\Windows\system32\perfproc.dll (Windows System Process Performance Objects DLL/Microsoft Corporation) 0x6C7B0000

Process C:\Windows\system32\vmnetdhcp.exe (VMware VMnet DHCP service/VMware, Inc.) 3228
Library C:\Windows\system32\vmnetdhcp.exe (VMware VMnet DHCP service/VMware, Inc.) 0x00400000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCR80.dll (Microsoft® C Runtime Library/Microsoft Corporation) 0x71AA0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\WS2_32.dll (Windows Socket 2.0 32-Bit DLL/Microsoft Corporation) 0x75BC0000
Library C:\Windows\system32\NSI.dll (NSI User-mode interface DLL/Microsoft Corporation) 0x75DB0000
Library C:\Windows\system32\IMM32.DLL (Multi-User Windows IMM32 API Client DLL/Microsoft Corporation) 0x773E0000
Library C:\Windows\system32\MSCTF.dll (MSCTF Server DLL/Microsoft Corporation) 0x76000000
Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000

Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 3352
Library C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 0x00B00000
Library C:\Windows\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation) 0x772B0000
Library C:\Windows\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation) 0x75DC0000
Library C:\Windows\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation) 0x75F30000
Library C:\Windows\system32\RPCRT4.dll (Remote Procedure Call Runtime/Microsoft Corporation) 0x75960000
Library C:\Windows\system32\USER32.dll (Multi-User Windows USER API Client DLL/Microsoft Corporation) 0x77410000
Library C:\Windows\system32\GDI32.dll (GDI Client DLL/Microsoft Corporation) 0x75BF0000
Library C:\Windows\system32\msvcrt.dll (Windows NT CRT DLL/Microsoft Corporation) 0x75C80000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\system32\ole32.dll (Microsoft OLE for Windows/Microsoft Corporation) 0x76650000
Library C:\Windows\system32\OLEAUT32.dll (Microsoft Corporation) 0x75EA0000
Library C:\Windows\system32\Secur32.dll (Security Support Provider Interface/Microsoft Corporation) 0x757F0000
Library C:\Windows\system32\XmlLite.dll (Microsoft XmlLite Library/Microsoft Corporation) &

pancakejohn · « **Reply #38 on:** April 23, 2010, 02:00:13 PM »

Library C:\Windows\system32\LPK.DLL (Language Pack/Microsoft Corporation) 0x75C70000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x75D30000
Library C:\Windows\system32\NTMARTA.DLL (Windows NT MARTA provider/Microsoft Corporation) 0x74C80000
Library C:\Windows\system32\SAMLIB.dll (SAM Library DLL/Microsoft Corporation) 0x75420000
Library C:\Windows\system32\CLBCatQ.DLL (COM+ Configuration Catalog/Microsoft Corporation) 0x76210000
Library C:\Windows\system32\wbem\wbemprox.dll (WMI/Microsoft Corporation) 0x6E7A0000
Library C:\Windows\system32\rsaenh.dll (Microsoft Enhanced Cryptographic Provider/Microsoft Corporation) 0x74F00000
Library C:\Windows\system32\wbem\wbemsvc.dll (WMI/Microsoft Corporation) 0x6E230000
Library C:\Windows\system32\wbem\wmiutils.dll (WMI/Microsoft Corporation) 0x6DE40000
Library C:\Windows\system32\wbem\WmiPerfClass.dll (WbemPerf V2 Class Provider/Microsoft Corporation) 0x6CD10000
Library C:\Windows\system32\pdh.dll (Windows Performance Data Helper DLL/Microsoft Corporation) 0x6CC30000
Library C:\Windows\system32\wevtapi.dll (Eventing Consumption and Configuration API/Microsoft Corporation) 0x75220000
Library C:\Windows\system32\wbem\wmiprov.dll (WMI/Microsoft Corporation) 0x6CB90000
Library C:\Windows\system32\WMI.dll (WMI DC and DP functionality/Microsoft Corporation) 0x71190000
Library C:\Windows\system32\netfxperf.dll (netfxperf.lib/Microsoft Corporation) 0x79FD0000
Library C:\Windows\system32\mscoree.dll (Microsoft .NET Runtime Execution Engine/Microsoft Corporation) 0x6C7D0000
Library C:\Windows\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation) 0x774B0000
Library C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation) 0x748C0000
Library C:\Windows\Microsoft.NET\Framework\v2.0.50727\perfcounter.dll (Microsoft performance counter extension for .NET Runtime/Microsoft Corporation) 0x640D0000
Library C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\MSVCR80.dll (Microsoft® C Runtime Library/Microsoft Corporation) 0x71AA0000
Library C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll (Microsoft .NET Runtime Common Language Runtime - WorkStation/Microsoft Corporation) 0x6BCB0000
Library C:\Windows\system32\emdmgmt.dll (ReadyBoost Service/Microsoft Corporation) 0x6F2A0000
Library C:\Windows\system32\WDSCORE.dll (Panther Engine Module/Microsoft Corporation) 0x70930000
Library C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation) 0x767A0000
Library C:\Windows\system32\SLWGA.dll (Software Licensing WGA API/Microsoft Corporation) 0x732C0000
Library C:\Windows\system32\urlmon.dll (OLE32 Extensions for Win32/Microsoft Corporation) 0x760D0000
Library C:\Windows\system32\iertutil.dll (Run time utility for Internet Explorer/Microsoft Corporation) 0x76460000
Library C:\Windows\system32\WTSAPI32.dll (Windows Terminal Server SDK APIs/Microsoft Corporation) 0x74C50000
Library C:\Windows\system32\slc.dll (Software Licensing Client Dll/Microsoft Corporation) 0x75260000
Library C:\Windows\system32\SETUPAPI.dll (Windows Setup API/Microsoft Corporation) 0x75A30000
Library C:\Windows\system32\esentprf.dll (Extensible Storage Engine Performance Monitoring Library for Microsoft(R) Windows(R)/Microsoft Corporation) 0x6CBE0000
Library C:\Windows\system32\msdtcuiu.DLL (MS DTCadministrative component DLL/Microsoft Corporation) 0x6C750000
Library C:\Windows\system32\ATL.DLL (ATL Module for Windows XP (Unicode)/Microsoft Corporation) 0x73D70000
Library C:\Windows\system32\MSDTCPRX.dll (MS DTCOLE Transactions interface proxy DLL/Microsoft Corporation) 0x6C6C0000
Library C:\Windows\system32\MTXCLU.DLL (MS DTC amd MTS clustering support DLL/Microsoft Corporation) 0x6C670000
Library C:\Windows\system32\CLUSAPI.dll (Cluster API Library/Microsoft Corporation) 0x73850000
Library C:\Windows\system32\cryptdll.dll (Cryptography Manager/Microsoft Corporation) 0x75470000
Library C:\Windows\system32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x733F0000
Library C:\Windows\system32\adsldpc.dll (ADs LDAP Provider C DLL/Microsoft Corporation) 0x733B0000
Library C:\Windows\system32\credui.dll (Credential Manager User Interface/Microsoft Corporation) 0x73380000
Library C:\Windows\system32\RESUTILS.dll (Microsoft Cluster Resource Utility DLL/Microsoft Corporation) 0x73670000
Library C:\Windows\system32\USERENV.dll (Userenv/Microsoft Corporation) 0x75810000
Library C:\Windows\system32\VERSION.dll (Version Checking and File Installation Libraries/Microsoft Corporation) 0x75070000
Library C:\Windows\system32\bcrypt.dll (Windows Cryptographic Primitives Library/Microsoft Corporation) 0x750D0000
Library C:\Windows\system32\ktmw32.dll (Windows KTM Win32 Client DLL/Microsoft Corporation) 0x73AC0000
Library C:\Windows\system32\msscntrs.dll (msscntrs.dll/Microsoft Corporation) 0x6CBD0000
Library C:\PROGRA~1\MICROS~2\Office12\OLMAPI32.DLL (Extended MAPI 1.0 for Windows NT/Microsoft Corporation) 0x6B9C0000
Library C:\Program Files\Common Files\Microsoft Shared\office12\mso.dll (2007 Microsoft Office component/Microsoft Corporation) 0x698E0000
Library C:\Windows\system32\msi.dll (Windows Installer/Microsoft Corporation) 0x71520000
Library C:\Windows\system32\perfnet.dll (Windows Network Service Performance Objects DLL/Microsoft Corporation) 0x6CBC0000
Library C:\Windows\system32\perfos.dll (Windows System Performance Objects DLL/Microsoft Corporation) 0x6C7C0000
Library C:\Windows\system32\perfproc.dll (Windows System Process Performance Objects DLL/Microsoft Corporation) 0x6C7B0000
Library C:\Windows\system32\pacerprf.dll (Microsoft® Windows(TM) PSched Performance Monitor/Microsoft Corporation) 0x6C7A0000
Library C:\Windows\system32\TRAFFIC.dll (Microsoft Traffic Control 1.0 DLL/Microsoft Corporation) 0x6CD60000
Library C:\Windows\system32\IPHLPAPI.DLL (IP Helper API/Microsoft Corporation) 0x751F0000
Library C:\Windows\system32\dhcpcsvc.DLL (DHCP Client Service/Microsoft Corporation) 0x751B0000
Library C:\Windows\system32\WINNSI.DLL (Network Store Information RPC interface/Microsoft Corporation) 0x751A0000
Library C:\Windows\system32\dhcpcsvc6.DLL (DHCPv6 Client/Microsoft Corporation) 0x75170000
Library C:\Windows\system32\rasctrs.dll (Windows NT Remote Access Perfmon Counter dll/Microsoft Corporation) 0x6C620000
Library C:\Windows\system32\rasman.dll (Remote Access Connection Manager/Microsoft Corporation) 0x6F350000
Library C:\Windows\system32\CRYPT32.dll (Crypto API32/Microsoft Corporation) 0x752A0000
Library C:\Windows\system32\MSASN1.dll (ASN.1 Runtime APIs/Microsoft Corporation) 0x75400000
Library C:\Windows\system32\credssp.dll (TS Single Sign On Security Package/Microsoft Corporation) 0x75090000
Library C:\Windows\system32\schannel.dll (TLS / SSL Security Provider/Microsoft Corporation) 0x74D10000
Library C:\Windows\system32\msv1_0.dll (Microsoft Authentication Package v1.0/Microsoft Corporation) 0x74F40000
Library C:\Windows\system32\winspool.drv (Windows Spooler Driver/Microsoft Corporation) 0x73ED0000
Library C:\Windows\system32\tapiperf.dll (Microsoft® Windows(TM) Telephony Performance Monitor/Microsoft Corporation) 0x6C610000
Library C:\Windows\system32\tapi32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation) 0x6F140000
Library C:\Windows\system32\rtutils.dll (Routing Utilities/Microsoft Corporation) 0x74380000
Library C:\Windows\system32\WINMM.dll (MCI API DLL/Microsoft Corporation) 0x74080000
Library C:\Windows\system32\OLEACC.dll (Active Accessibility Core Component/Microsoft Corporation) 0x74040000
Library C:\Windows\system32\Perfctrs.dll (Performance Counters/Microsoft Corporation) 0x6C600000
Library C:\Windows\system32\perfts.dll (Windows Terminal Services Performance Objects/Microsoft Corporation) 0x6C5F0000
Library C:\Windows\system32\WINSTA.dll (Winstation Library/Microsoft Corporation) 0x750A0000
Library C:\Windows\system32\UTILDLL.dll (WinStation utility support DLL/Microsoft Corporation) 0x6C790000
Library C:\Windows\system32\usbperf.dll (USB Performance Objects DLL/Microsoft Corporation) 0x6C5D0000
Library C:\Program Files\VMware\VMware Player\vmPerfmon.dll (vmwarePerfmon DLL/VMware, Inc.) 0x69500000
Library C:\Windows\system32\wbem\wmiaprpl.dll (WMI Performance Reverse Adapter/Microsoft Corporation) 0x6C590000
Library C:\Windows\system32\loadperf.dll (Load & Unload Performance Counters/Microsoft Corporation) 0x6C5B0000
Library C:\Windows\system32\tquery.dll (tquery.dll/Microsoft Corporation) 0x6E4E0000
Library C:\Windows\system32\PROPSYS.dll (Microsoft Property System/Microsoft Corporation) 0x73F20000
Library C:\Windows\system32\WINTRUST.dll (Microsoft Trust Verification APIs/Microsoft Corporation) 0x74AB0000
Library C:\Windows\system32\imagehlp.dll (Windows NT Image Helper/Microsoft Corporation) 0x75C40000
Library C:\Windows\system32\query.dll (Content Index Utility DLL/Microsoft Corporation) 0x6E380000

---- Services - GMER 1.0.15 ----

Service .NET CLR Data
Service .NET CLR Networking
Service .NET Data Provider for Oracle
Service .NET Data Provider for SqlServer
Service .NETFramework
Service C:\Program Files\Sprint\Mobile Broadband\SMBAUtilSvc.exe (CMSPCSUtilSvc/SprintNextel) [AUTO] Access Utility Service
Service C:\Windows\system32\drivers\acpi.sys (ACPI Driver for NT/Microsoft Corporation) [BOOT] ACPI
Service C:\Windows\system32\drivers\adp94xx.sys (Adaptec Windows SAS/SATA Storport Driver/Adaptec, Inc.) [DISABLED] adp94xx
Service C:\Windows\system32\drivers\adpahci.sys (Adaptec Windows SATA Storport Driver/Adaptec, Inc.) [DISABLED] adpahci
Service C:\Windows\system32\drivers\adpu160m.sys (Adaptec LH Ultra160 Driver (x86)/Adaptec, Inc.) [DISABLED] adpu160m
Service C:\Windows\system32\drivers\adpu320.sys (Adaptec StorPort Ultra320 SCSI Driver/Adaptec, Inc.) [DISABLED] adpu320
Service adsi
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] AeLookupSvc
Service C:\Windows\system32\drivers\afd.sys (Ancillary Function Driver for WinSock/Microsoft Corporation) [SYSTEM] AFD
Service C:\Windows\system32\drivers\agp440.sys (440 NT AGP Filter/Microsoft Corporation) [MANUAL] agp440
Service C:\Windows\system32\drivers\djsvs.sys (Adaptec Ultra SCSI miniport/Adaptec, Inc.) [DISABLED] aic78xx
Service C:\Windows\System32\alg.exe (Application Layer Gateway Service/Microsoft Corporation) [MANUAL] ALG
Service C:\Windows\system32\drivers\aliide.sys (ALi mini IDE Driver/Acer Laboratories Inc.) [DISABLED] aliide
Service C:\Windows\system32\drivers\amdagp.sys (AMD NT AGP Filter/Microsoft Corporation) [MANUAL] amdagp
Service C:\Windows\system32\drivers\amdide.sys (AMD IDE Driver/Microsoft Corporation) [DISABLED] amdide
Service C:\Windows\system32\drivers\amdk7.sys (Processor Device Driver/Microsoft Corporation) [DISABLED] AmdK7
Service C:\Windows\system32\drivers\amdk8.sys (Processor Device Driver/Microsoft Corporation) [DISABLED] AmdK8
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] Appinfo
Service C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) [AUTO] Apple Mobile Device
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] AppMgmt
Service C:\Windows\system32\drivers\arc.sys (Adaptec RAID Storport Driver/Adaptec, Inc.) [DISABLED] arc
Service C:\Windows\system32\drivers\arcsas.sys (Adaptec SAS RAID WS03 Driver/Adaptec, Inc.) [DISABLED] arcsas
Service C:\??\C:\Program Files\ASTRA32\ASTRA32.sys [AUTO] ASTRA32
Service C:\Windows\system32\DRIVERS\asyncmac.sys (MS Remote Access serial network driver/Microsoft Corporation) [MANUAL] AsyncMac
Service C:\Windows\system32\drivers\atapi.sys (ATAPI IDE Miniport Driver/Microsoft Corporation) &

pancakejohn · « **Reply #39 on:** April 23, 2010, 02:00:58 PM »

Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Activation Licensing Service/Macrovision Europe Ltd.) [MANUAL] FLEXnet Licensing Service
Service C:\Windows\system32\DRIVERS\flpydisk.sys (Floppy Driver/Microsoft Corporation) [MANUAL] flpydisk
Service C:\Windows\system32\drivers\fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) [BOOT] FltMgr
Service C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (PresentationFontCache.exe/Microsoft Corporation) [MANUAL] FontCache3.0.0.0
Service (File System Recognizer Driver/Microsoft Corporation) [SYSTEM] Fs_Rec
Service C:\Windows\System32\DRIVERS\fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation) [BOOT] fvevol
Service C:\Windows\system32\drivers\gagp30kx.sys (MS Generic AGPv3.0 Filter for K8/9 Processor Platforms/Microsoft Corporation) [MANUAL] gagp30kx
Service C:\??\C:\Windows\gdrv.sys [MANUAL] gdrv
Service C:\Windows\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) [MANUAL] GEARAspiWDM
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] gpsvc
Service C:\Windows\system32\drivers\ha10kx2k.sys (Creative EMU10KX HAL (WDM)/Creative Technology Ltd) [MANUAL] ha10kx2k
Service C:\Windows\system32\DRIVERS\hamachi.sys (Hamachi Virtual Network Interface Driver/LogMeIn, Inc.) [MANUAL] hamachi
Service C:\Windows\system32\drivers\hap16v2k.sys (Creative EMU10KX-P16v HAL (WDM)/Creative Technology Ltd) [MANUAL] hap16v2k
Service C:\Windows\system32\drivers\hap17v2k.sys (Creative EMU10KX-P17v HAL (WDM)/Creative Technology Ltd) [MANUAL] hap17v2k
Service C:\??\C:\Windows\system32\drivers\hcmon.sys [AUTO] hcmon
Service C:\Windows\system32\drivers\HdAudio.sys (High Definition Audio Function Driver/Microsoft Corporation) [MANUAL] HdAudAddService
Service C:\Windows\system32\DRIVERS\HDAudBus.sys (High Definition Audio Bus Driver/Microsoft Corporation) [MANUAL] HDAudBus
Service C:\Windows\system32\drivers\hidbth.sys (Bluetooth Miniport Driver for HID Devices/Microsoft Corporation) [DISABLED] HidBth
Service C:\Windows\system32\drivers\hidir.sys (Infrared Miniport Driver for Input Devices/Microsoft Corporation) [DISABLED] HidIr
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] hidserv
Service C:\Windows\system32\DRIVERS\hidusb.sys (USB Miniport Driver for Input Devices/Microsoft Corporation) [MANUAL] HidUsb
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] hkmsvc
Service C:\Windows\system32\drivers\hpcisss.sys (Smart Array Storport Driver/Hewlett-Packard Company) [DISABLED] HpCISSs
Service C:\Windows\system32\drivers\HTTP.sys (HTTP Protocol Stack/Microsoft Corporation) [MANUAL] HTTP
Service C:\Windows\system32\drivers\i2omp.sys (I2O Miniport Driver/Microsoft Corporation) [DISABLED] i2omp
Service C:\Windows\system32\DRIVERS\i8042prt.sys (i8042 Port Driver/Microsoft Corporation) [DISABLED] i8042prt
Service C:\Windows\system32\drivers\iastorv.sys (Intel Matrix Storage Manager driver (base)/Intel Corporation) [DISABLED] iaStorV
Service C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (IDriverT Module/Macrovision Corporation) [MANUAL] IDriverT
Service C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Windows CardSpace/Microsoft Corporation) [MANUAL] idsvc
Service C:\Windows\system32\drivers\iirsp.sys (Intel/ICP Raid Storport Driver/Intel Corp./ICP vortex GmbH) [DISABLED] iirsp
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] IKEEXT
Service inetaccs
Service C:\Windows\system32\drivers\intelide.sys (Intel PCI IDE Driver/Microsoft Corporation) [DISABLED] intelide
Service C:\Windows\system32\DRIVERS\intelppm.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] intelppm
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] IPBusEnum
Service C:\Windows\system32\DRIVERS\ipfltdrv.sys (IP FILTER DRIVER/Microsoft Corporation) [MANUAL] IpFilterDriver
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] iphlpsvc
Service system32\DRIVERS\ipinip.sys [MANUAL] IpInIp
Service C:\Windows\system32\drivers\ipmidrv.sys (WMI IPMI DRIVER/Microsoft Corporation) [DISABLED] IPMIDRV
Service C:\Windows\system32\DRIVERS\ipnat.sys (IP Network Address Translator/Microsoft Corporation) [MANUAL] IPNAT
Service C:\Program Files\iPod\bin\iPodService.exe (iPodService Module/Apple Inc.) [MANUAL] iPod Service
Service C:\Windows\system32\drivers\irenum.sys (Infra-Red Bus Enumerator/Microsoft Corporation) [MANUAL] IRENUM
Service C:\Windows\system32\drivers\isapnp.sys (PNP ISA Bus Driver/Microsoft Corporation) [DISABLED] isapnp
Service C:\Windows\system32\DRIVERS\msiscsi.sys (Microsoft iSCSI Initiator Driver/Microsoft Corporation) [MANUAL] iScsiPrt
Service C:\??\C:\Program Files\UltraISO\drivers\ISODrive.sys [SYSTEM] ISODrive
Service C:\Windows\system32\drivers\iteatapi.sys (ITE IT8211 ATA/ATAPI SCSI miniport/Integrated Technology Express, Inc.) [DISABLED] iteatapi
Service C:\Windows\system32\drivers\iteraid.sys (ITE IT8212 ATA RAID SCSI miniport/Integrated Technology Express, Inc.) [DISABLED] iteraid
Service C:\Windows\system32\DRIVERS\jraid.sys (JMicron JMB36X RAID Driver/JMicron Technology Corp.) [BOOT] JRAID
Service C:\Windows\system32\DRIVERS\kbdclass.sys (Keyboard Class Driver/Microsoft Corporation) [SYSTEM] kbdclass
Service C:\Windows\system32\DRIVERS\kbdhid.sys (HID Keyboard Filter Driver/Microsoft Corporation) [SYSTEM] kbdhid
Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] KeyIso
Service C:\Windows\system32\DRIVERS\kl1.sys (Kaspersky Unified Driver/Kaspersky Lab) [SYSTEM] kl1
Service C:\Windows\system32\drivers\klbg.sys (Kaspersky Lab Boot Guard Driver/Kaspersky Lab) [BOOT] klbg
Service C:\Windows\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab) [SYSTEM] KLIF
Service C:\Windows\system32\DRIVERS\klim6.sys (Kaspersky Lab Intermediate Network Driver/Kaspersky Lab) [SYSTEM] KLIM6
Service C:\Windows\system32\DRIVERS\klmouflt.sys (KLMOUFLT Mouse Device Filter [fre_wlh_x86]/Kaspersky Lab) [MANUAL] klmouflt
Service C:\Windows\System32\Drivers\ksecdd.sys (Kernel Security Support Provider Interface/Microsoft Corporation) [BOOT] KSecDD
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] KtmRm
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] LanmanServer
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] LanmanWorkstation
Service system32\DRIVERS\Lbd.sys [BOOT] Lbd
Service ldap
Service C:\Windows\system32\DRIVERS\lltdio.sys (Link-Layer Topology Mapper I/O Driver/Microsoft Corporation) [AUTO] lltdio
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] lltdsvc
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] lmhosts
Service Lsa
Service C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic Fusion-MPT FC Driver (StorPort)/LSI Logic) [DISABLED] LSI_FC
Service C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic Fusion-MPT SAS Driver (StorPort)/LSI Logic) [DISABLED] LSI_SAS
Service C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic Fusion-MPT SCSI Driver (StorPort)/LSI Logic) [DISABLED] LSI_SCSI
Service C:\Windows\system32\drivers\luafv.sys (LUA File Virtualization Filter Driver/Microsoft Corporation) [AUTO] luafv
Service C:\Windows\system32\drivers\MTiCtwl.sys (MagicTunePremium Driver/Samsung Electronics, Inc. ) [SYSTEM] MagicTune
Service C:\Windows\system32\DRIVERS\MarvinBus.sys (Pinnacle Marvin Discrete Bus Enumerator/Pinnacle Systems GmbH) [MANUAL] MarvinBus
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [DISABLED] Mcx2Svc
Service C:\Windows\system32\drivers\megasas.sys (MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x86/LSI Corporation) [DISABLED] megasas
Service C:\Windows\system32\drivers\megasr.sys (LSI MegaRAID Software RAID Driver/LSI Corporation, Inc.) [DISABLED] MegaSR
Service C:\Windows\system32\270.tmp [MANUAL] MEMSWEEP2
Service Messenger
Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe (Groove Audit Service/Microsoft Corporation) [MANUAL] Microsoft Office Groove Audit Service
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] MMCSS
Service C:\Windows\system32\drivers\modem.sys (Modem Device Driver/Microsoft Corporation) [MANUAL] Modem
Service C:\Windows\system32\DRIVERS\monitor.sys (Monitor Driver/Microsoft Corporation) [MANUAL] monitor
Service C:\Windows\system32\DRIVERS\motmodem.sys (Motorola USB Modem and Ports Driver/Motorola) [MANUAL] motmodem
Service C:\Windows\system32\DRIVERS\mouclass.sys (Mouse Class Driver/Microsoft Corporation) [SYSTEM] mouclass
Service C:\Windows\system32\DRIVERS\mouhid.sys (HID Mouse Filter Driver/Microsoft Corporation) [MANUAL] mouhid
Service C:\Windows\System32\drivers\mountmgr.sys (Mount Point Manager/Microsoft Corporation) [BOOT] MountMgr
Service C:\Windows\system32\drivers\mpio.sys (MultiPath Support Bus-Driver/Microsoft Corporation) [DISABLED] mpio
Service C:\Windows\System32\drivers\mpsdrv.sys (Microsoft Protection Service Driver/Microsoft Corporation) [MANUAL] mpsdrv
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] MpsSvc
Service C:\Windows\system32\drivers\mraid35x.sys (MegaRAID RAID Controller Driver for Windows Vista/Longhorn for x86/LSI Logic Corporation) [DISABLED] Mraid35x
Service C:\Windows\system32\drivers\mrxdav.sys (Windows NT WebDav Minirdr/Microsoft Corporation) [MANUAL] MRxDAV
Service C:\Windows\system32\DRIVERS\mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation) [MANUAL] mrxsmb
Service C:\Windows\system32\DRIVERS\mrxsmb10.sys (Longhorn SMB Downlevel SubRdr/Microsoft Corporation) [MANUAL] mrxsmb10
Service C:\Windows\system32\DRIVERS\mrxsmb20.sys (Longhorn SMB 2.0 Redirector/Microsoft Corporation) [MANUAL] mrxsmb20
Service C:\Windows\system32\drivers\msahci.sys (MS AHCI 1.0 Standard Driver/Microsoft Corporation) [DISABLED] msahci
Service C:\Windows\system32\drivers\msdsm.sys (Microsoft Device Specific Module/Microsoft Corporation) [DISABLED] msdsm
Service C:\Windows\System32\msdtc.exe (MS DTCconsole program/Microsoft Corporation) [MANUAL] MSDTC
Service MSDTC Bridge 3.0.0.0
Service (Mailslot driver/Microsoft Corporation) [SYSTEM] Msfs
Service C:\Windows\system32\drivers\msisadrv.sys (ISA Driver/Microsoft Corporation) [BOOT] msisadrv
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] MSiSCSI
Service C:\Windows\system32\msiexec.exe (Windows® installer/Microsoft Corporation) [MANUAL] msiserver
Service C:\Windows\system32\drivers\MSKSSRV.sys (MS KS Server/Microsoft Corporation) [MANUAL] MSKSSRV
Service C:\Windows\system32\drivers\MSPCLOCK.sys (MS Proxy Clock/Microsoft Corporation) [MANUAL] MSPCLOCK
Service C:\Windows\system32\drivers\MSPQM.sys (MS Proxy Quality Manager/Microsoft Corporation) [MANUAL] MSPQM
Service (Kernel Remote Procedure Call Provider/Microsoft Corporation) [MANUAL] MsRPC
Service MSSCNTRS
Service C:\Windows\system32\DRIVERS\mssmbios.sys (System Management BIOS Driver/Microsoft Corporation) [MANUAL] mssmbios
Service C:\Windows\system32\drivers\MSTEE.sys (WDM Tee/Communication Transform Filter /Microsoft Corporation) [MANUAL] MSTEE
Service C:\Windows\System32\Drivers\mup.sys (Multiple UNC Provider driver/Microsoft Corporation) [BOOT] Mup
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] napagent
Service C:\Windows\system32\DRIVERS\nwifi.sys (NativeWiFi Miniport Driver/Microsoft Corporation) [MANUAL] NativeWifiP
Service C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (Nero BackItUp/Nero AG) [MANUAL] NBService
Service C:\Windows\system32\drivers\ndis.sys (NDIS 6.0 wrapper driver/Microsoft Corporation)

pancakejohn · « **Reply #40 on:** April 23, 2010, 02:01:34 PM »

Service C:\Windows\system32\DRIVERS\rdpdr.sys (Microsoft RDP Device redirector/Microsoft Corporation) [MANUAL] rdpdr
Service C:\Windows\system32\drivers\rdpencdd.sys (RDP Miniport/Microsoft Corporation) [SYSTEM] RDPENCDD
Service RDPNP
Service (RDP Terminal Stack Driver/Microsoft Corporation) [MANUAL] RDPWD
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [DISABLED] RemoteAccess
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] RemoteRegistry
Service C:\Program Files\CyberLink\Shared files\RichVideo.exe [AUTO] RichVideo
Service C:\??\C:\Program Files\RivaTuner v2.22\RivaTuner32.sys [MANUAL] RivaTuner32
Service C:\Windows\System32\Drivers\RootMdm.sys (Legacy Non-Pnp Modem Device Driver/Microsoft Corporation) [MANUAL] ROOTMODEM
Service C:\Windows\system32\locator.exe (Rpc Locator/Microsoft Corporation) [MANUAL] RpcLocator
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] RpcSs
Service C:\Windows\system32\DRIVERS\rspndr.sys (Link-Layer Topology Responder Driver for NDIS 6/Microsoft Corporation) [AUTO] rspndr
Service C:\Windows\system32\DRIVERS\Rtlh86.sys (Realtek 8136/8168/8169 NDIS6 32-bit Driver /Realtek ) [MANUAL] RTL8169
Service C:\Windows\system32\DRIVERS\RtTeam60.sys (Realtek NDIS 6.0 Intermediate Miniport Driver for Teaming/Realtek Corporation) [MANUAL] RTTEAMPT
Service C:\Windows\system32\DRIVERS\RtVlan60.sys (Sample NDIS 6.0 Intermediate Miniport Driver/Windows (R) Codename Longhorn DDK provider) [MANUAL] RTVLANPT
Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [AUTO] SamSs
Service C:\??\C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home XII.SP2c\WNt500x86\Sandra.sys [MANUAL] SANDRA
Service C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home XII.SP2c\RpcAgentSrv.exe (SiSoftware Deployment Agent Service (NT)(Unicode)/SiSoftware) [AUTO] SandraAgentSrv
Service C:\Windows\system32\drivers\sbp2port.sys (SBP-2 Protocol Driver/Microsoft Corporation) [DISABLED] sbp2port
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] SCardSvr
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] Schedule
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] SCPolicySvc
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] SDRSVC
Service (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [AUTO] secdrv
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] seclogon
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] SENS
Service C:\Windows\system32\DRIVERS\serenum.sys (Serial Port Enumerator/Microsoft Corporation) [MANUAL] Serenum
Service C:\Windows\system32\DRIVERS\serial.sys (Serial Device Driver/Microsoft Corporation) [SYSTEM] Serial
Service C:\Windows\system32\drivers\sermouse.sys (Serial Mouse Filter Driver/Microsoft Corporation) [DISABLED] sermouse
Service ServiceModelEndpoint 3.0.0.0
Service ServiceModelOperation 3.0.0.0
Service ServiceModelService 3.0.0.0
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] SessionEnv
Service C:\Windows\system32\drivers\sffdisk.sys (Small Form Factor Disk Driver/Microsoft Corporation) [DISABLED] sffdisk
Service C:\Windows\system32\drivers\sffp_mmc.sys (Small Form Factor MMC Protocol Driver/Microsoft Corporation) [MANUAL] sffp_mmc
Service C:\Windows\system32\drivers\sffp_sd.sys (Small Form Factor SD Protocol Driver/Microsoft Corporation) [MANUAL] sffp_sd
Service C:\Windows\system32\DRIVERS\sfloppy.sys (SCSI Floppy Driver/Microsoft Corporation) [MANUAL] sfloppy
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] SharedAccess
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] ShellHWDetection
Service C:\Windows\system32\drivers\sisagp.sys (SIS NT AGP Filter/Microsoft Corporation) [MANUAL] sisagp
Service C:\Windows\system32\drivers\sisraid2.sys (SiS RAID Stor Miniport Driver/Microsoft Corporation) [DISABLED] SiSRaid2
Service C:\Windows\system32\drivers\sisraid4.sys (SiS AHCI Stor-Miniport Driver/Silicon Integrated Systems) [DISABLED] SiSRaid4
Service C:\Windows\system32\SLsvc.exe (Microsoft Software Licensing Service/Microsoft Corporation) [AUTO] slsvc
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] SLUINotify
Service C:\Windows\system32\DRIVERS\smb.sys (SMB Transport driver/Microsoft Corporation) [SYSTEM] Smb
Service SMSvcHost 3.0.0.0
Service C:\Windows\System32\snmptrap.exe (SNMP Trap/Microsoft Corporation) [MANUAL] SNMPTRAP
Service (loader for security processor/Microsoft Corporation) [BOOT] spldr
Service C:\Windows\System32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) [AUTO] Spooler
Service C:\Windows\System32\Drivers\sptd.sys (SCSI Pass Through Direct Host/Duplex Secure Ltd.) [DISABLED] sptd
Service C:\Windows\System32\DRIVERS\srv.sys (Server driver/Microsoft Corporation) [MANUAL] srv
Service C:\Windows\System32\DRIVERS\srv2.sys (Smb 2.0 Server driver/Microsoft Corporation) [MANUAL] srv2
Service C:\Windows\System32\DRIVERS\srvnet.sys (Server Network driver/Microsoft Corporation) [MANUAL] srvnet
Service C:\Windows\system32\DRIVERS\sscdbus.sys (SAMSUNG USB Composite Device Driver/MCCI) [MANUAL] sscdbus
Service C:\Windows\system32\DRIVERS\sscdmdfl.sys (SAMSUNG CDMA Modem Filter Driver/MCCI) [MANUAL] sscdmdfl
Service C:\Windows\system32\DRIVERS\sscdmdm.sys (SAMSUNG CDMA Modem WDM/MCCI) [MANUAL] sscdmdm
Service C:\Windows\system32\DRIVERS\sscdserd.sys (SAMSUNG CDMA Modem Diagnostic Serial Port Device Driver/MCCI) [MANUAL] sscdserd
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] SSDPSRV
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] SstpSvc
Service C:\Program [MANUAL] Steam Client Service
Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Stereo Vision Control Panel API Server/NVIDIA Corporation) [AUTO] Stereo Service
Service C:\Windows\system32\DRIVERS\serscan.sys (Serial Imaging Device Driver/Microsoft Corporation) [MANUAL] StillCam
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] stisvc
Service C:\Windows\system32\DRIVERS\swenum.sys (Plug and Play Software Device Enumerator/Microsoft Corporation) [MANUAL] swenum
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] swprv
Service C:\Windows\system32\drivers\symc8xx.sys (LSI Logic 8XX SCSI Miniport Driver/LSI Logic) [DISABLED] Symc8xx
Service C:\Windows\system32\drivers\sym_hi.sys (LSI Logic Hi-Perf SCSI Miniport Driver/LSI Logic) [DISABLED] Sym_hi
Service C:\Windows\system32\drivers\sym_u3.sys (LSI Logic Ultra160 SCSI Miniport Driver/LSI Logic) [DISABLED] Sym_u3
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] SysMain
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] TabletInputService
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] TapiSrv
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] TBS
Service C:\Windows\System32\drivers\tcpip.sys (TCP/IP Driver/Microsoft Corporation) [BOOT] Tcpip
Service C:\Windows\system32\DRIVERS\tcpip.sys (TCP/IP Driver/Microsoft Corporation) [MANUAL] Tcpip6
Service C:\Windows\System32\drivers\tcpipreg.sys (TCP/IP Registry Compatibility Driver/Microsoft Corporation) [AUTO] tcpipreg
Service C:\Windows\system32\drivers\tdpipe.sys (Named Pipe Transport Driver/Microsoft Corporation) [MANUAL] TDPIPE
Service C:\Windows\system32\drivers\tdtcp.sys (TCP Transport Driver/Microsoft Corporation) [MANUAL] TDTCP
Service C:\Windows\system32\DRIVERS\tdx.sys (TDI Translation Driver/Microsoft Corporation) [SYSTEM] tdx
Service C:\Windows\system32\DRIVERS\RtTeam60.sys (Realtek NDIS 6.0 Intermediate Miniport Driver for Teaming/Realtek Corporation) [MANUAL] TEAM
Service C:\Windows\system32\DRIVERS\termdd.sys (Terminal Server Driver/Microsoft Corporation) [SYSTEM] TermDD
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] TermService
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] Themes
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] THREADORDER
Service C:\Windows\system32\drivers\TotRec7.sys (Total Recorder WDM audio driver/High Criteria inc.) [MANUAL] TotRec7
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] TrkWks
Service C:\Windows\System32\drivers\truecrypt.sys (TrueCrypt Driver/TrueCrypt Foundation) [SYSTEM] truecrypt
Service C:\Windows\servicing\TrustedInstaller.exe (Windows Modules Installer/Microsoft Corporation) [MANUAL] TrustedInstaller
Service TSDDD
Service C:\Windows\System32\DRIVERS\tssecsrv.sys (TS Security Filter Driver/Microsoft Corporation) [MANUAL] tssecsrv
Service C:\Windows\system32\DRIVERS\tunmp.sys (Microsoft Tunnel Interface Driver/Microsoft Corporation) [MANUAL] tunmp
Service C:\Windows\system32\DRIVERS\tunnel.sys (Microsoft Tunnel Interface Driver/Microsoft Corporation) [MANUAL] tunnel
Service C:\Windows\system32\drivers\uagp35.sys (MS AGPv3.5 Filter/Microsoft Corporation) [MANUAL] uagp35
Service C:\Windows\system32\DRIVERS\udfs.sys (UDF File System Driver/Microsoft Corporation) [DISABLED] udfs
Service C:\Program Files\VMware\VMware Player\vmware-ufad.exe (VMware Host Process for Ufa Services/VMware, Inc.) [MANUAL] ufad-ws60
Service UGatherer
Service UGTHRSVC
Service C:\Windows\system32\UI0Detect.exe (Interactive services detection/Microsoft Corporation) [MANUAL] UI0Detect
Service C:\Windows\system32\drivers\uliagpkx.sys (ULi AGPv3.0 Filter for K8/9 Processor Platforms/Microsoft Corporation) [MANUAL] uliagpkx
Service C:\Windows\system32\drivers\uliahci.sys (ULi SATA Controller Driver/ULi Electronics Inc.) [DISABLED] uliahci
Service C:\Windows\system32\drivers\ulsata.sys (Promise Ultra/Sata Series Driver for Win2003/Promise Technology, Inc.) [DISABLED] UlSata
Service C:\Windows\system32\drivers\ulsata2.sys (Promise SATAII150 Series Windows Drivers/Promise Technology, Inc.) [DISABLED] ulsata2
Service C:\Windows\system32\DRIVERS\umbus.sys (User-Mode Bus Enumerator/Microsoft Corporation) [MANUAL] umbus
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] UmRdpService
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] upnphost
Service usb
Service C:\Windows\System32\Drivers\usbaapl.sys (Apple Mobile Device USB Driver/Apple, Inc.) [MANUAL] USBAAPL
Service C:\Windows\system32\drivers\usbaudio.sys (USB Audio Class Driver/Microsoft Corporation) [MANUAL] usbaudio
Service C:\Windows\system32\DRIVERS\lgusbbus.sys (LG CDMA USB Multi function Driver/LG Electronics Inc.) [MANUAL] usbbus
Service C:\Windows\system32\DRIVERS\usbccgp.sys (USB Common Class Generic Parent Driver/Microsoft Corporation) [MANUAL] usbccgp
Service C:\Windows\system32\drivers\usbcir.sys (USB Consumer IR Driver for eHome/Microsoft Corporation) [DISABLED] usbcir
Service C:\Windows\system32\DRIVERS\lgusbdiag.sys (LG CDMA USB Diagnostics Driver/LG Electronics Inc.) [MANUAL] UsbDiag
Service C:\Windows\system32\DRIVERS\usbehci.sys (EHCI eUSB Miniport Driver/Microsoft Corporation)

pancakejohn · « **Reply #41 on:** April 23, 2010, 02:01:55 PM »

Service C:\Program Files\Windows Media Player\wmpnetwk.exe (Windows Media Player Network Sharing Service/Microsoft Corporation) [MANUAL] WMPNetworkSvc
Service C:\Windows\system32\drivers\WmVirHid.sys (Logitech WingMan Virtual Hid Device Driver/Logitech Inc.) [MANUAL] WmVirHid
Service C:\Windows\system32\drivers\WmXlCore.sys (Logitech WingMan Translation Driver/Logitech Inc.) [MANUAL] WmXlCore
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [MANUAL] WPCSvc
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] WPDBusEnum
Service C:\Windows\system32\DRIVERS\wpdusb.sys (WPD USB Driver/Microsoft Corporation) [MANUAL] WpdUsb
Service C:\Windows\system32\drivers\ws2ifsl.sys (Winsock2 IFS Layer/Microsoft Corporation) [SYSTEM] ws2ifsl
Service C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] wscsvc
Service C:\Windows\system32\SearchIndexer.exe (Microsoft Windows Search Indexer/Microsoft Corporation) [AUTO] WSearch
Service WSearchIdxPi
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] wuauserv
Service C:\Windows\system32\DRIVERS\WUDFRd.sys (Windows Driver Foundation - User-mode Driver Framework Reflector/Microsoft Corporation) [MANUAL] WUDFRd
Service C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) [AUTO] wudfsvc
Service xmlprov
Service {221A22F6-DE83-4FEE-95FE-8A699C8394D8}
Service {2ACA1F88-ED3C-444F-96C6-73CE26A2ED07}
Service {581CF5C4-4998-4834-9A9E-31B16E4652DD}
Service {C9366D02-C371-4552-B5AC-B2D2A97F11E5}

---- EOF - GMER 1.0.15 ----

Dr Jay · « **Reply #42 on:** April 23, 2010, 02:32:49 PM »

I am just going to step in here for a moment.

Delete your copy of GMER, and download a new one from here: http://www2.gmer.net/gmer.zip

Launch GMER and in the right panel, untick all except the following:

Sections
IAT/EAT
Services
Show All

Then click the scan button & show me the log it produces.

pancakejohn · « **Reply #43 on:** April 23, 2010, 07:27:54 PM »

Hi Dragonmasterjay I was hoping I would hear from you sooner or later. I had the same problem with this new version of GMER locking up my system about 5 seconds after the scan completed. I was able to get a log though:

(Broken up due to 50000 character limit)

GMER 1.0.15.15281 - http://www.gmer.netRootkit scan 2010-04-23 20:23:41
Windows 6.0.6001 Service Pack 1
Running: gmer.exe; Driver: C:\Users\ADMINI~1\AppData\Local\Temp\pggdikod.sys

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!RtlPrefetchMemoryNonTemporal 85EA2068 1 Byte [90]
.text ntkrnlpa.exe!ZwQueryLicenseValue + D21 85EA5BD9 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 4FA 85F02EEA 18 Bytes [E0, 25, 7F, FF, FF, FF, 0F, ...]
.text ntkrnlpa.exe!KiDispatchInterrupt + 512 85F02F02 1 Byte [00]
.text ntkrnlpa.exe!KeSetTimerEx + 34C 85F06A10 4 Bytes [D0, FB, 58, 96] {SAR BL, 0x1; POP EAX; XCHG ESI, EAX}
.text ntkrnlpa.exe!KeSetTimerEx + 370 85F06A34 8 Bytes [2C, 15, 59, 96, 82, 17, 59, ...] {SUB AL, 0x15; POP ECX; XCHG ESI, EAX; ADC BYTE [EDI], 0x59; XCHG ESI, EAX}
.text ntkrnlpa.exe!KeSetTimerEx + 3B4 85F06A78 4 Bytes [FC, 19, 59, 96] {CLD ; SBB [ECX-0x6a], EBX}
.text ntkrnlpa.exe!KeSetTimerEx + 3DC 85F06AA0 4 Bytes [50, 04, 59, 96] {PUSH EAX; ADD AL, 0x59; XCHG ESI, EAX}
.text ntkrnlpa.exe!KeSetTimerEx + 3F4 85F06AB8 4 Bytes [32, 0B, 59, 96] {XOR CL, [EBX]; POP ECX; XCHG ESI, EAX}
.text ...
PAGE spsys.sys!?SPVersion@@3PADA + 1A67 8244F03F 105 Bytes [8B, FF, 55, 8B, EC, 8B, 45, ...]
PAGE spsys.sys!?SPVersion@@3PADA + 1AD1 8244F0A9 134 Bytes [82, 8B, C1, F0, 0F, B1, 16, ...]
PAGE spsys.sys!?SPVersion@@3PADA + 1B58 8244F130 6 Bytes [0E, 83, 78, 14, 01, 75]
PAGE spsys.sys!?SPVersion@@3PADA + 1B5F 8244F137 2214 Bytes [83, 78, 18, 37, 75, 02, B3, ...]
PAGE spsys.sys!?SPVersion@@3PADA + 2406 8244F9DE 47 Bytes [04, BB, A8, 01, 00, 00, 8D, ...]
PAGE ...

---- User code sections - GMER 1.0.15 ----

.text C:\Windows\System32\spoolsv.exe[1836] msonpmon.dll!InitializePrintMonitor2 + FFFFF09C 72391418 4 Bytes [D0, D4, 98, EA]
.text C:\Windows\System32\spoolsv.exe[1836] msonpppr.dll!EnumPrintProcessorDatatypesW + FFFFCA40 71E612FC 4 Bytes [B0, B8, 96, EA]
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2128] C:\Windows\system32\ntdll.dll time/date stamp mismatch;
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2128] C:\Windows\system32\kernel32.dll time/date stamp mismatch; unknown module: 32.dll
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2128] USER32.dll!GetAppCompatFlags2 + 880 77CB6390 4 Bytes [70, 11, 33, 6D]
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\Windows\system32\ntdll.dll time/date stamp mismatch;
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\Windows\system32\kernel32.dll time/date stamp mismatch; unknown module: 32.dll
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] USER32.dll!GetAppCompatFlags2 + 880 77CB6390 4 Bytes [70, 11, 33, 6D]
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\klavemu.kdl section is writeable [0x38401000, 0x17C000, 0xE0000020]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\klavemu.kdl entry point in ".pklav" section [0x3870B1A8]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\klavemu.kdl unknown last code section [0x3870B000, 0x2000, 0xE00000E0]
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\kjim.kdl section is writeable [0x38801000, 0x6E000, 0xE0000020]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\kjim.kdl entry point in ".pklav" section [0x38978118]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\kjim.kdl unknown last code section [0x38978000, 0x2000, 0xE00000E0]
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\mark.kdl section is writeable [0x38301000, 0x1F000, 0xE0000020]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\mark.kdl entry point in ".pklav" section [0x3832B1E0]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\mark.kdl unknown last code section [0x3832B000, 0x2000, 0xE00000E0]
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\qscan.kdl section is writeable [0x38C01000, 0x7B000, 0xE0000020]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\qscan.kdl entry point in ".pklav" section [0x38C9317C]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\qscan.kdl unknown last code section [0x38C93000, 0x2000, 0xE00000E0]
CODE C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avzkrnl.dll entry point in "CODE" section [0x6D1E6CB4]
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\kavsys.kdl section is writeable [0x38D01000, 0x1E000, 0xE0000020]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\kavsys.kdl entry point in ".pklav" section [0x38D2B260]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\kavsys.kdl unknown last code section [0x38D2B000, 0x2000, 0xE00000E0]
? C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\webav.kdl number of sections mismatch;
.text C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\webav.kdl section is writeable [0x10001000, 0x26000, 0xE0000020]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\webav.kdl entry point in ".pklav" section [0x1002E110]
.pklav C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe[2460] C:\ProgramData\Kaspersky Lab\AVP9\Bases\webav.kdl unknown last code section [0x1002E000, 0x2000, 0xE00000E0]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] mshtml.dll!IERegisterXMLNS + FFC9943E 6DCEC2A0 4 Bytes [40, 09, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] mshtml.dll!IERegisterXMLNS + FFC9945A 6DCEC2BC 16 Bytes [B0, 09, CB, 70, 20, 0A, CB, ...]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] mshtml.dll!DllGetClassObject + E81B 6DCFBC30 4 Bytes [10, 07, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] mshtml.dll!DllGetClassObject + E833 6DCFBC48 4 Bytes [80, 07, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] mshtml.dll!DllGetClassObject + C41BF 6DDB15D4 4 Bytes [70, 04, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] mshtml.dll!DllGetClassObject + C41DB 6DDB15F0 16 Bytes [E0, 04, CB, 70, 50, 05, CB, ...]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] mshtml.dll!DllGetClassObject + CD237 6DDBA64C 4 Bytes [A0, 06, CB, 70]
? C:\Program Files\Windows Sidebar\sidebar.exe[2532] C:\Windows\system32\ieframe.dll time/date stamp mismatch; unknown module: IEFRAME.dllunknown module: MSIMG32.dllunknown module: VERSION.dllunknown module: WINMM.dllunknown module: MPR.dllunknown module: OCCACHE.dllunknown module: urlmon.dllunknown module: OLEACC.dllunknown module: MLANG.dllunknown module: CRYPTUI.dllunknown module: WINTRUST.dllunknown module: IMM32.dllunknown module: msi.dllunknown module: MSHTML.dllunknown module: INETCOMM.dllunknown module: MSRATING.dllunknown module: gdiplus.dllunknown module: UxTheme.dllunknown module: IEUI.dllunknown module: msfeeds.dllunknown module: RASAPI32.dllunknown module: USP10.dllunknown module: credui.dllunknown module: IEShims.dllunknown module: wer.dllunknown module: OLEAUT32.dllunknown module: iertutil.dllunknown module: ieframe.dll)),argb(0,0,0,0))" /></if> <if keyfocused="true"><button contentalign = "middlecenter | focusrect" /></if> <if pressed="true" mousefocused="true"><button background = "themeable(resbmp(0xA602,6,-1,21,20,0,0,library(ieframe.dll)),argb(0,0,0,0))" padding = "theme
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] ieframe.dll!DllCanUnloadNow + 9CCB 7021E8CC 3 Bytes [D0, 08, CB] {ROR BYTE [EAX], 0x1; RETF }
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllRegisterServer + FFF98077 6E6B00D8 4 Bytes [80, 00, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllRegisterServer + FFF9D5CB 6E6B562C 4 Bytes [20, 03, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllRegisterServer + FFF9D5DF 6E6B5640 4 Bytes [90, 03, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllRegisterServer + FFF9D607 6E6B5668 4 Bytes [00, 04, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllGetClassObject + 67E3 6E6BD818 4 Bytes [F0, 00, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllGetClassObject + 67EB 6E6BD820 8 Bytes [60, 01, CB, 70, D0, 01, CB, ...]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllGetClassObject + 67F7 6E6BD82C 4 Bytes [40, 02, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllGetClassObject + 681F 6E6BD854 4 Bytes [B0, 02, CB, 70]
.text C:\Program Files\Windows Sidebar\sidebar.exe[2532] jscript.dll!DllGetClassObject + 6B1F 6E6BDB54 4 Bytes [60, 08, CB, 70]
.text ...
UPX1 C:\Users\Administrator\Desktop\gmer.exe[3992] C:\Users\Administrator\Desktop\gmer.exe entry point in "UPX1" section [0x004B3F40]
.text C:\Windows\system32\wbem\wmiprvse.exe[4024] OLMAPI32.DLL!HrACLCopy@8 + 29CDD 6AF9BFB4 4 Bytes [C8, 80, 42, 31] {ENTER 0x4280, 0x31}
.text C:\Windows\system32\wbem\wmiprvse.exe[4024] mso.dll!_MsoFSetTooltips@4 + 1DC2A0 6927E568 4 Bytes [75, A4, 50, 31]

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Windows\System32\svchost.exe[1148] @ c:\windows\system32\RASAPI32.dll [TAPI32.dll!lineTranslateAddressW] [6FC43F8E] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ c:\windows\system32\RASAPI32.dll [TAPI32.dll!lineGetCountryW] [6FC2E2C1] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ c:\windows\system32\RASAPI32.dll [TAPI32.dll!lineGetTranslateCapsW] [6FC43B50] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ C:\Windows\System32\RASDLG.dll [TAPI32.dll!lineTranslateAddressW] [6FC43F8E] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ C:\Windows\System32\RASDLG.dll [TAPI32.dll!LOpenDialAsst] [6FC2B079] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ C:\Windows\System32\RASDLG.dll [TAPI32.dll!lineSetCurrentLocation] [6FC42833] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ C:\Windows\System32\RASDLG.dll [TAPI32.dll!lineGetCountryW] [6FC2E2C1] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ C:\Windows\System32\RASDLG.dll [TAPI32.dll!lineGetTranslateCapsW] [6FC43B50] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ C:\Windows\System32\RASDLG.dll [TAPI32.dll!lineConfigDialogW] [6FC33D76] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\System32\svchost.exe[1148] @ C:\Windows\System32\RASDLG.dll [TAPI32.dll!lineTranslateDialogW] [6FC426BB] c:\windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineDrop] [6FC2CB42] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineGetTranslateCapsA] [6FC43A93] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineAccept] [6FC2BD0B] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineAnswer] [6FC2BECC] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineMakeCallA] [6FC2F6CA] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineGetDevConfigA] [6FC2E83E] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineSetDevConfigA] [6FC30BD3] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineInitializeExA] [6FC259A6] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineDevSpecific] [6FC2C7BE] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineSetStatusMessages] [6FC30EFD] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineGetCallInfoA] [6FC2E10D] C:\Windows\system32\TAPI32.dll (Microsoft® Windows(TM) Telephony API Client DLL/Microsoft Corporation)
IAT C:\Windows\system32\svchost.exe[1168] @ C:\Windows\system32\rastapi.dll [TAPI32.dll!lineNegotiateAPIVersion] &nb

pancakejohn · « **Reply #44 on:** April 23, 2010, 07:28:53 PM »

IAT C:\Windows\Explorer.EXE[1680] @ C:\Program Files\Microsoft Office\Office12\GrooveUtil.DLL [COMCTL32.dll!ImageList_Destroy] [75382E74] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [COMCTL32.dll!InitCommonControlsEx] [75371322] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipSetSmoothingMode] [74BA7624] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipDrawLineI] [74BE04E6] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipGraphicsClear] [74BE95B2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipFillEllipse] [74C31A45] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipSetInterpolationMode] [74B9FB47] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCreateRegionPath] [74C27A2F] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCloneBitmapAreaI] [74BC5CD8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCloneBrush] [74C2907A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCloneImage] [74BE98A5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdiplusStartup] [74BA7A79] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipSetCompositingQuality] [74BA76C1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipDrawImageRectI] [74BAB9D4] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipSetCompositingMode] [74BA2465] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipReleaseDC] [74BCA684] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipGetImageGraphicsContext] [74BA2A73] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCreateFromHDC] [74B9EA65] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipAddPathEllipseI] [74C2525C] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCreateSolidFill] [74BCEEBA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipBitmapSetPixel] [74C2E5E0] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCreateBitmapFromStreamICM] [74BDB17D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCreateBitmapFromStream] [74BABC9A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipGetImageHeight] [74BA074E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipGetImageWidth] [74BA06B5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdiplusShutdown] [74BA88B4] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipDisposeImage] [74B971B3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipGetRegionHRgn] [74BF79EF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipDeleteRegion] [74BCC353] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipDeleteGraphics] [74B9E109] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipDeletePath] [74BCF286] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCreatePath] [74BD2B99] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipDeletePen] [74BFE48D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipCreatePen1] [74BFDF99] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipDeleteBrush] [74BCF3C3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipAlloc] [74B969A9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\timedate.cpl [gdiplus.dll!GdipFree] [74B9697E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\authui.dll [COMCTL32.dll!ImageList_Destroy] [75382E74] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\authui.dll [COMCTL32.dll!ImageList_GetImageCount] [75357392] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\authui.dll [COMCTL32.dll!ImageList_LoadImageW] [7536885D] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\authui.dll [COMCTL32.dll!ImageList_DrawEx] [7535D25A] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\authui.dll [COMCTL32.dll!InitCommonControlsEx] [75371322] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\System32\SndVolSSO.dll [gdiplus.dll!GdiplusStartup] [74BA7A79] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\System32\SndVolSSO.dll [gdiplus.dll!GdiplusShutdown] [74BA88B4] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdiplusStartup] [74BA7A79] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdiplusShutdown] [74BA88B4] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipGetImageThumbnail] [74C2E1DA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipFree] [74B9697E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipAlloc] [74B969A9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipDeleteGraphics] [74B9E109] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipDisposeImage] [74B971B3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipCreateBitmapFromFile] [74BE0405] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipCreateBitmapFromFileICM] [74C2E2A6] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipCreateHICONFromBitmap] [74BCA2F2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipDrawImageRectI] [74BAB9D4] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipCreateFromHDC] [74B9EA65] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipSetSmoothingMode] [74BA7624] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\pnidui.dll [gdiplus.dll!GdipCloneImage] [74BE98A5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipFree] [74B9697E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipAlloc] [74B969A9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipCreateImageAttributes] [74BCB716] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipDisposeImageAttributes] [74BCB797] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipDeleteGraphics] [74B9E109] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipDisposeImage] [74B971B3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipGetImageWidth] [74BA06B5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdiplusStartup] [74BA7A79] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdiplusShutdown] [74BA88B4] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipCloneImage] [74BE98A5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipDrawImageRectRectI] [74BA0A08] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipSetInterpolationMode] [74B9FB47] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipGetImageGraphicsContext] [74BA2A73] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipSetImageAttributesWrapMode] [74BC4D93] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipCreateHBITMAPFromBitmap] [74BAD748] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipCreateBitmapFromScan0] [74B9721D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipCreateBitmapFromStreamICM] [74BDB17D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipCreateBitmapFromStream] [74BABC9A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\system32\OneX.DLL [gdiplus.dll!GdipGetImageHeight] [74BA074E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18175_none_9e7bbe54c9c04bca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\System32\DreamScene.dll [COMCTL32.dll!ImageList_Create] [75372AF7] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\System32\DreamScene.dll [COMCTL32.dll!ImageList_ReplaceIcon] [753897AE] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1680] @ C:\Windows\System32\DreamScene.dll [COMCTL32.dll!ImageList_Destroy] [75382E74] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (User Experience Controls Library/Microsoft Corporation)
IAT C:\Wi

Computer Hope Forum

News:

Author Topic: Rootkit.Win32.TDSS.d on Vista (Read 79709 times)

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

Dr Jay

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista

pancakejohn

Re: Rootkit.Win32.TDSS.d on Vista