Please double-check my work

Hewlett-packard Compaq presario sr5450f...
December 2, 2009 at 21:20:16
Specs: Vista, Pentium Dual CPU E2180 2GB
Hi!

This one should be an easy one. I already did
two scans w/ AVG and Malwarebytes and it
was able to rid the system of over 100
Malware and Viruses.

I was hoping if someone could just double-
check my work and make sure that all the
viruses, etc. are gone.

What do you need first from me?

Thank you for your time!


See More: Please double-check my work

Report •


#1
December 2, 2009 at 21:27:01
Are there any symptoms, about the only way to check it is to do the usual scans,

Please save this file to your desktop.

Win32kDiag.exe

Please double click on the Win32kDiag file and post the log it produces. This log might be quite lengthy and may take more than one post to get all of it posted.

Please run RSIT.exe by random/random and post its logs.

Download random's system information tool (RSIT) by random/random from the following link and save it to your desktop.

RSIT.exe

1. Double click on RSIT.exe to launch program.
2.(Vista Users Only) Right click on the RSIT.exe icon and select "Run as Administrator" to run the program.
3. Click Continue at the disclaimer screen.
4. Your firewall may alert you that RSIT is requesting Internet access. Please allow it.
5.Once it has finished, two logs will open: log.txt<-- this will be maximized and info.txt<-- this will be minimized. Both logs will be located at C:\RSIT.exe.

Please post the contents of both logs (in separate post) in your next reply.

Download Gmer.exe from the following link.

Link1

1. Disconnect from the Internet and close all running programs.
2. Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
3. Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
4. Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.
5. GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
6. If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
7. Now click the Scan button. If you see a rootkit warning window, click OK.
8. When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
9. Click the Copy button and paste the results into your next reply.
•Exit GMER and re-enable all active protection when done.


Report •

#2
December 4, 2009 at 15:32:33
Hi, Jabuck! Thanks for responding.

The first link isn't working. The DOS window it opened states: Running from: C:\Users\johncl\Documents\Security\Win32kDiag.exe

Log file at : C:\Users\johncl\Desktop\Win32kDiag.txt

WARNING: Could not get backup privileges!

Searching 'C:\Windows'...

Cannot access: C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\csp45C3.tmp

[1] 2009-12-02 19:36:42 81 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\csp45C3.tmp ()

I'm gonna try the other links right now.


Report •

#3
December 4, 2009 at 15:39:39
Logfile of random's system information tool 1.06 (written by random/random)
Run by johncl at 2009-12-04 17:38:12
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 440 GB (94%) free of 467 GB
Total RAM: 1916 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:38:26 PM, on 12/4/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\SBC\update\SST.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Snapfish Picture Mover\SnapfishMediaDetector.exe
C:\Program Files\Initio\AcomData PushButton Manager v1.10\inihid_xp.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Yahoo!\Companion\Installs\cpn4\ytbb.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\johncl\Documents\Security\RSIT.exe
C:\Program Files\trend micro\johncl.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?Lin...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?T...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?Lin...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?Lin...
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?T...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O1 - Hosts: 69.10.51.38 a1.review.zdnet.com
O1 - Hosts: 69.10.51.38 d1.reviews.cnet.com
O1 - Hosts: 69.10.51.38 reviews.riverstreams.co.uk
O1 - Hosts: 69.10.51.38 reviews.download.com
O1 - Hosts: 69.10.51.38 review.2009softwarereviews.com
O1 - Hosts: 69.10.51.38 reviews.pcmag.com
O1 - Hosts: 69.10.51.38 reviews.pcadvisor.co.uk
O1 - Hosts: 69.10.51.38 reviews.techradar.com
O1 - Hosts: 69.10.51.38 reviews.pcpro.co.uk
O1 - Hosts: 69.10.51.38 www.reevoo.com
O1 - Hosts: 69.10.51.38 toptenreviews.com
O1 - Hosts: 69.10.51.38 a1.review.zdnet.com
O1 - Hosts: 69.10.51.38 d1.reviews.cnet.com
O1 - Hosts: 69.10.51.38 reviews.riverstreams.co.uk
O1 - Hosts: 69.10.51.38 reviews.download.com
O1 - Hosts: 69.10.51.38 review.2009softwarereviews.com
O1 - Hosts: 69.10.51.38 reviews.pcmag.com
O1 - Hosts: 69.10.51.38 reviews.pcadvisor.co.uk
O1 - Hosts: 69.10.51.38 reviews.techradar.com
O1 - Hosts: 69.10.51.38 reviews.pcpro.co.uk
O1 - Hosts: 69.10.51.38 www.reevoo.com
O1 - Hosts: 69.10.51.38 toptenreviews.com
O1 - Hosts: 69.10.51.38 a1.review.zdnet.com
O1 - Hosts: 69.10.51.38 d1.reviews.cnet.com
O1 - Hosts: 69.10.51.38 reviews.riverstreams.co.uk
O1 - Hosts: 69.10.51.38 reviews.download.com
O1 - Hosts: 69.10.51.38 review.2009softwarereviews.com
O1 - Hosts: 69.10.51.38 reviews.pcmag.com
O1 - Hosts: 69.10.51.38 reviews.pcadvisor.co.uk
O1 - Hosts: 69.10.51.38 reviews.techradar.com
O1 - Hosts: 69.10.51.38 reviews.pcpro.co.uk
O1 - Hosts: 69.10.51.38 www.reevoo.com
O1 - Hosts: 69.10.51.38 toptenreviews.com
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SBC_McciTrayApp] C:\Program Files\SBC\update\SST.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW,SYSTRAY
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: AcomData PushButton Manager.lnk = ?
O4 - Startup: RDP2009.lnk = C:\Program Files\Angle Interactive\RDP2009\RDP2009.exe
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Snapfish Media Detector.lnk = C:\Program Files\Snapfish Picture Mover\SnapfishMediaDetector.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - https://www-secure.symantec.com/techsupp/asa/ss/sa/sa_cabs/tgctlsr.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 11685 bytes

======Scheduled tasks folder======

C:\Windows\tasks\EasyShare Registration Task.job
C:\Windows\tasks\HPCeeScheduleForjohncl.job
C:\Windows\tasks\User_Feed_Synchronization-{3A6A19C6-40D0-4DFA-A737-77943C2B09F9}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll [2009-09-19 1172280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2009-12-01 1475864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2009-10-16 1119488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-02 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn4\YTSingleInstance.dll [2009-09-19 158008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll [2009-09-19 1172280]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2009-10-16 1119488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe -hide []
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-07-03 6266880]
"hpsysdrv"=c:\hp\support\hpsysdrv.exe [2007-04-18 65536]
"OsdMaestro"=C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [2007-02-15 118784]
"HP Health Check Scheduler"=[ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe []
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-11-02 149280]
""= []
"SBC_McciTrayApp"=C:\Program Files\SBC\update\SST.exe [2007-02-28 1011200]
"ArcSoft Connection Service"=C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-10-10 203264]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2007-06-29 286720]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-05-22 13539872]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-05-22 92704]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2009-02-03 111856]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam\Quickcam.exe [2008-12-20 2656528]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2009-12-01 2020120]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"HPAdvisor"=C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-08-05 1644088]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-20 125952]
"Search Protection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2009-02-03 111856]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2009-02-03 111856]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Kodak EasyShare software.lnk - C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
Snapfish Media Detector.lnk - C:\Program Files\Snapfish Picture Mover\SnapfishMediaDetector.exe

C:\Users\johncl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
AcomData PushButton Manager.lnk - C:\Users\johncl\AppData\Roaming\Microsoft\Installer\{3EB255B0-0707-4A8E-8044-B4B51A36CEDA}\_124305e.exe
RDP2009.lnk - C:\Program Files\Angle Interactive\RDP2009\RDP2009.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"NoDispScrSavPage"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe"="C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2009-12-04 17:38:13 ----D---- C:\Program Files\trend micro
2009-12-04 17:38:12 ----D---- C:\rsit
2009-12-02 03:20:19 ----D---- C:\Program Files\Windows Portable Devices
2009-12-02 03:03:27 ----A---- C:\Windows\system32\tzres.dll
2009-12-02 03:03:13 ----A---- C:\Windows\system32\UIAnimation.dll
2009-12-02 03:03:12 ----A---- C:\Windows\system32\UIRibbonRes.dll
2009-12-02 03:03:12 ----A---- C:\Windows\system32\UIRibbon.dll
2009-12-02 03:02:49 ----A---- C:\Windows\system32\WMPhoto.dll
2009-12-02 03:02:49 ----A---- C:\Windows\system32\cdd.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\xpsservices.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\XpsRasterService.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\XpsPrint.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-12-02 03:02:48 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\OpcServices.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\FntCache.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\dxdiagn.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\dxdiag.exe
2009-12-02 03:02:48 ----A---- C:\Windows\system32\DWrite.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\d3d10warp.dll
2009-12-02 03:02:48 ----A---- C:\Windows\system32\d2d1.dll
2009-12-02 03:02:47 ----A---- C:\Windows\system32\dxgi.dll
2009-12-02 03:02:47 ----A---- C:\Windows\system32\d3d11.dll
2009-12-02 03:02:47 ----A---- C:\Windows\system32\d3d10level9.dll
2009-12-02 03:02:47 ----A---- C:\Windows\system32\d3d10core.dll
2009-12-02 03:02:47 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-12-02 03:02:47 ----A---- C:\Windows\system32\d3d10_1.dll
2009-12-02 03:02:47 ----A---- C:\Windows\system32\d3d10.dll
2009-12-02 03:02:25 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2009-12-02 03:02:25 ----A---- C:\Windows\system32\wpdbusenum.dll
2009-12-02 03:02:25 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2009-12-02 03:02:24 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2009-12-02 03:02:22 ----A---- C:\Windows\system32\WPDSp.dll
2009-12-02 03:02:22 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-12-02 03:02:22 ----A---- C:\Windows\system32\wpdshext.dll
2009-12-02 03:02:22 ----A---- C:\Windows\system32\wpd_ci.dll
2009-12-02 03:02:22 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-12-02 03:02:22 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-12-02 03:02:22 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-12-02 03:02:22 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-12-02 03:01:44 ----A---- C:\Windows\system32\UIAutomationCore.dll
2009-12-02 03:01:44 ----A---- C:\Windows\system32\oleaccrc.dll
2009-12-02 03:01:44 ----A---- C:\Windows\system32\oleacc.dll
2009-12-02 03:00:23 ----SHD---- C:\Config.Msi
2009-12-02 01:37:56 ----D---- C:\Users\johncl\AppData\Roaming\Malwarebytes
2009-12-02 01:37:50 ----D---- C:\ProgramData\Malwarebytes
2009-12-02 01:37:50 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-12-01 23:47:52 ----HD---- C:\$AVG
2009-12-01 23:47:49 ----A---- C:\Windows\system32\avgrsstx.dll
2009-12-01 23:47:41 ----A---- C:\Windows\system32\msxml6.dll
2009-12-01 23:47:40 ----A---- C:\Windows\system32\msxml3.dll
2009-12-01 23:47:22 ----D---- C:\ProgramData\AVG Security Toolbar
2009-12-01 23:46:58 ----D---- C:\ProgramData\avg9
2009-12-01 23:46:58 ----D---- C:\Program Files\AVG
2009-11-10 21:42:37 ----A---- C:\Windows\system32\WSDApi.dll
2009-11-05 19:02:18 ----A---- C:\Windows\system32\wups2.dll
2009-11-05 19:02:18 ----A---- C:\Windows\system32\wuauclt.exe
2009-11-05 19:02:17 ----A---- C:\Windows\system32\wucltux.dll
2009-11-05 19:02:17 ----A---- C:\Windows\system32\wuaueng.dll
2009-11-05 19:01:38 ----A---- C:\Windows\system32\wups.dll
2009-11-05 19:01:38 ----A---- C:\Windows\system32\wudriver.dll
2009-11-05 19:01:38 ----A---- C:\Windows\system32\wuapi.dll
2009-11-05 19:01:11 ----A---- C:\Windows\system32\wuwebv.dll
2009-11-05 19:01:11 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 months======

2009-12-04 17:38:26 ----D---- C:\Windows\Prefetch
2009-12-04 17:38:13 ----RD---- C:\Program Files
2009-12-04 17:38:09 ----D---- C:\Windows\Temp
2009-12-04 17:30:07 ----D---- C:\Windows\System32
2009-12-04 17:30:07 ----D---- C:\Windows\inf
2009-12-04 17:30:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-12-03 00:53:26 ----SHD---- C:\Windows\Installer
2009-12-02 19:34:44 ----HD---- C:\ProgramData
2009-12-02 07:25:50 ----D---- C:\Windows\system32\Tasks
2009-12-02 03:38:04 ----D---- C:\Windows\rescache
2009-12-02 03:20:25 ----D---- C:\Windows
2009-12-02 03:20:21 ----D---- C:\Windows\system32\en-US
2009-12-02 03:20:19 ----D---- C:\Windows\system32\wbem
2009-12-02 03:20:19 ----D---- C:\Windows\system32\drivers
2009-12-02 03:20:18 ----D---- C:\Windows\system32\pt-BR
2009-12-02 03:20:18 ----D---- C:\Windows\system32\bg-BG
2009-12-02 03:20:17 ----D---- C:\Windows\system32\zh-TW
2009-12-02 03:20:17 ----D---- C:\Windows\system32\zh-HK
2009-12-02 03:20:17 ----D---- C:\Windows\system32\zh-CN
2009-12-02 03:20:17 ----D---- C:\Windows\system32\uk-UA
2009-12-02 03:20:17 ----D---- C:\Windows\system32\tr-TR
2009-12-02 03:20:17 ----D---- C:\Windows\system32\th-TH
2009-12-02 03:20:17 ----D---- C:\Windows\system32\sv-SE
2009-12-02 03:20:17 ----D---- C:\Windows\system32\sr-Latn-CS
2009-12-02 03:20:17 ----D---- C:\Windows\system32\sl-SI
2009-12-02 03:20:17 ----D---- C:\Windows\system32\sk-SK
2009-12-02 03:20:17 ----D---- C:\Windows\system32\ru-RU
2009-12-02 03:20:17 ----D---- C:\Windows\system32\ro-RO
2009-12-02 03:20:17 ----D---- C:\Windows\system32\pt-PT
2009-12-02 03:20:17 ----D---- C:\Windows\system32\pl-PL
2009-12-02 03:20:17 ----D---- C:\Windows\system32\nl-NL
2009-12-02 03:20:17 ----D---- C:\Windows\system32\nb-NO
2009-12-02 03:20:17 ----D---- C:\Windows\system32\lv-LV
2009-12-02 03:20:17 ----D---- C:\Windows\system32\lt-LT
2009-12-02 03:20:17 ----D---- C:\Windows\system32\ko-KR
2009-12-02 03:20:17 ----D---- C:\Windows\system32\ja-JP
2009-12-02 03:20:17 ----D---- C:\Windows\system32\it-IT
2009-12-02 03:20:17 ----D---- C:\Windows\system32\hu-HU
2009-12-02 03:20:17 ----D---- C:\Windows\system32\hr-HR
2009-12-02 03:20:17 ----D---- C:\Windows\system32\he-IL
2009-12-02 03:20:17 ----D---- C:\Windows\system32\fr-FR
2009-12-02 03:20:17 ----D---- C:\Windows\system32\fi-FI
2009-12-02 03:20:17 ----D---- C:\Windows\system32\et-EE
2009-12-02 03:20:17 ----D---- C:\Windows\system32\es-ES
2009-12-02 03:20:17 ----D---- C:\Windows\system32\el-GR
2009-12-02 03:20:17 ----D---- C:\Windows\system32\de-DE
2009-12-02 03:20:17 ----D---- C:\Windows\system32\da-DK
2009-12-02 03:20:17 ----D---- C:\Windows\system32\cs-CZ
2009-12-02 03:20:17 ----D---- C:\Windows\system32\ar-SA
2009-12-02 03:04:07 ----D---- C:\Windows\winsxs
2009-12-02 03:03:51 ----D---- C:\Windows\system32\catroot
2009-12-02 03:03:20 ----D---- C:\Windows\system32\catroot2
2009-12-01 23:46:36 ----D---- C:\Program Files\Common Files\microsoft shared
2009-12-01 23:45:54 ----SD---- C:\Users\johncl\AppData\Roaming\Microsoft
2009-12-01 23:30:18 ----D---- C:\Windows\system32\LogFiles
2009-12-01 23:29:01 ----SHD---- C:\System Volume Information
2009-12-01 23:22:00 ----D---- C:\ProgramData\Norton
2009-12-01 23:20:11 ----D---- C:\Program Files\Common Files\Symantec Shared
2009-12-01 23:12:13 ----D---- C:\ProgramData\Microsoft Help
2009-11-12 10:46:40 ----D---- C:\Program Files\Windows Mail
2009-11-05 11:36:21 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2009-12-01 333192]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2009-12-01 28424]
R1 AvgTdiX;AVG Free Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2009-12-01 360584]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-10-18 8704]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2005-02-23 11776]
R3 HSF_DP;HSF_DP; C:\Windows\system32\DRIVERS\HSX_DP.sys [2008-05-08 980992]
R3 HSXHWBS2;HSXHWBS2; C:\Windows\system32\DRIVERS\HSXHWBS2.sys [2008-05-08 266752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-07-03 2152088]
R3 LVPr2Mon;LVPr2Mon Driver; C:\Windows\system32\Drivers\LVPr2Mon.sys [2008-12-16 25624]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-11-17 1040544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-05-22 7465312]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2008-05-08 661504]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-20 11264]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-20 83328]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-20 5632]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2008-12-17 41752]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS [2008-09-19 21248]
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS [2008-09-19 20096]
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-20 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-20 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-20 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-20 6016]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV302V32.SYS [2008-12-16 2686104]
S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-20 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-20 39936]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-20 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-20 386616]
S4 nvsmu;nvsmu; C:\Windows\system32\drivers\nvsmu.sys [2007-10-12 13312]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]
R2 avg9emc;AVG Free E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2009-12-01 906520]
R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2009-12-01 285392]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-09-19 65536]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-03-17 73728]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2008-12-16 150040]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2008-09-19 303104]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-05-22 118784]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-10-18 386560]
R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-20 21504]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2007-07-23 181800]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------


Report •

Related Solutions

#4
December 4, 2009 at 15:40:42
info.txt logfile of random's system information tool 1.06 2009-12-04 17:38:28

======Uninstall list======

-->"C:\Program Files\HP Games\3D Ultra Minigolf Adventures\Uninstall.exe"
-->"C:\Program Files\HP Games\7 Wonders of the Ancient World\Uninstall.exe"
-->"C:\Program Files\HP Games\Bejeweled 2 Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Blasterball 2 Revolution\Uninstall.exe"
-->"C:\Program Files\HP Games\Blasterball 3\Uninstall.exe"
-->"C:\Program Files\HP Games\Chuzzle Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Crystal Maze\Uninstall.exe"
-->"C:\Program Files\HP Games\Diner Dash\Uninstall.exe"
-->"C:\Program Files\HP Games\FATE\Uninstall.exe"
-->"C:\Program Files\HP Games\Fish Tycoon\Uninstall.exe"
-->"C:\Program Files\HP Games\Insaniquarium Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Jewel Quest Solitaire\Uninstall.exe"
-->"C:\Program Files\HP Games\Jewel Quest\Uninstall.exe"
-->"C:\Program Files\HP Games\Magic Academy\Uninstall.exe"
-->"C:\Program Files\HP Games\Mah Jong Quest\Uninstall.exe"
-->"C:\Program Files\HP Games\My HP Game Console\Uninstall.exe"
-->"C:\Program Files\HP Games\Otto's Magic Blocks\Uninstall.exe"
-->"C:\Program Files\HP Games\Peggle\Uninstall.exe"
-->"C:\Program Files\HP Games\Penguins!\Uninstall.exe"
-->"C:\Program Files\HP Games\Polar Bowler\Uninstall.exe"
-->"C:\Program Files\HP Games\Polar Golfer Pineapple Cup\Uninstall.exe"
-->"C:\Program Files\HP Games\Polar Golfer\Uninstall.exe"
-->"C:\Program Files\HP Games\Ricochet Lost Worlds\Uninstall.exe"
-->"C:\Program Files\HP Games\Shooting Stars Pool\Uninstall.exe"
-->"C:\Program Files\HP Games\Slingo Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Spacebound\Uninstall.exe"
-->"C:\Program Files\HP Games\Super Granny\Uninstall.exe"
-->"C:\Program Files\HP Games\Tradewinds\Uninstall.exe"
-->"C:\Program Files\HP Games\Virtual Villagers - A New Home\Uninstall.exe"
-->"C:\Program Files\HP Games\Virtual Villagers - Chapter 2 - The Lost Children\Uninstall.exe"
-->"C:\Program Files\HP Games\Zuma Deluxe\Uninstall.exe"
-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
AcomData PushButton Manager v1.10-->MsiExec.exe /I{3EB255B0-0707-4A8E-8044-B4B51A36CEDA}
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{B3C2C1CD-6B77-4A96-B670-F734AC2A1CBC}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
ArcSoft Print Creations - Album Page-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9 -1AlbumPage
ArcSoft Print Creations - Funhouse-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9 -1Funhouse
ArcSoft Print Creations - Greeting Card-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9 -1GreetingCard
ArcSoft Print Creations - Photo Book-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9 -1PhotoBook
ArcSoft Print Creations - Photo Calendar-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9 -1Calendar
ArcSoft Print Creations - Photo Prints-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9 -1PhotoPrint
ArcSoft Print Creations - Scrapbook-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9 -1ScrapBook
ArcSoft Print Creations - Slimline Card-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9 -1Slimline
ArcSoft Print Creations-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0D6D96F4-0CAF-4522-B05F-70A88EDECDFD}\Setup.exe" -l0x9
ArcSoft Print Creations-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAE8A0F1-B498-4C23-95FA-55047E730C8F}\setup.exe" -l0x9
Art Explosion Publisher Pro 2.0-->MsiExec.exe /X{39D4FB9C-9CDE-4449-BD2B-6AD4D376CFDC}
AT&T Yahoo! Internet Mail-->C:\Windows\system32\regsvr32 /u /s C:\PROGRA~1\Yahoo!\Common\Ymmapi.dll
ATT-HSI-->C:\PROGRA~1\ATT\UNWISE.EXE C:\PROGRA~1\ATT\INSTALL.LOG
AVG Free 9.0-->C:\Program Files\AVG\AVG9\setup.exe /UNINSTALL
CCScore-->MsiExec.exe /I{B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}
Compaq Demo-->MsiExec.exe /I{7F2B6338-4C07-49A0-BDF0-AD92E3124A7E}
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
CyberLink DVD Suite Deluxe-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\Setup.exe" -uninstall
Detroit Iron Information Systems 2.0 (C:\Program Files\Detroit\) #3-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\Detroit\ST6UNST.001"
Detroit Iron Information Systems 2.0 (C:\Program Files\Detroit\) #4-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\Detroit\ST6UNST.002"
Detroit Iron Information Systems 2.0 (C:\Program Files\Detroit\)-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\Detroit\ST6UNST.000"
Detroit Iron Information Systems 2.0-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\Detroit\ST6UNST.LOG"
EPSON Print CD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FF477885-5EA8-40D0-ADF3-D4C1B86FAEA4}\Setup.exe" -l0x9 -SYSTEM
EPSON Printer Software-->C:\Windows\system32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
EPSON RX595 User's Guide-->C:\Program Files\epson\guide\sprx595_e\uninstall.exe
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
EPSON Stylus Photo RX595 Series Scanner Driver Update-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1CA2E5E4-F4FE-44B4-95E9-77523FB95838}\Setup.exe" -l0x9
EPSON Web-To-Page-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\Setup.exe" -l0x9 -anything
ESSBrwr-->MsiExec.exe /I{643EAE81-920C-4931-9F0B-4B343B225CA6}
ESSCDBK-->MsiExec.exe /I{AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}
ESScore-->MsiExec.exe /I{42938595-0D83-404D-9F73-F8177FDD531A}
ESSgui-->MsiExec.exe /I{91517631-A9F3-4B7C-B482-43E0068FD55A}
ESSini-->MsiExec.exe /I{8E92D746-CD9F-4B90-9668-42B74C14F765}
ESSPCD-->MsiExec.exe /I{14D4ED84-6A9A-45A0-96F6-1753768C3CB5}
ESSPDock-->MsiExec.exe /I{FCDB1C92-03C6-4C76-8625-371224256091}
ESSTOOLS-->MsiExec.exe /I{8A502E38-29C9-49FA-BCFA-D727CA062589}
essvatgt-->MsiExec.exe /I{2D03B6F8-DF36-4980-B7B6-5B93D5BA3A8F}
fflink-->MsiExec.exe /I{608D2A3C-6889-4C11-9B54-A42F45ACBFDB}
Hardware Diagnostic Tools-->C:\Program Files\PC-Doctor 5 for Windows\uninst.exe
Hewlett-Packard Active Check-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Hewlett-Packard Asset Agent for Health Check-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Advisor-->MsiExec.exe /X{73A43E42-3658-4DD9-8551-FACDA3632538}
HP Customer Experience Enhancements-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C8D47273-7A1A-4614-A3D8-263632D8A5ED}\setup.exe" -l0x9 -removeonly
HP Customer Feedback-->MsiExec.exe /I{9DBA770F-BF73-4D39-B1DF-6035D95268FC}
HP Easy Setup - Frontend-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1BCE2581-B7CA-4BB4-BDFB-D113506AA38B}\setup.exe" -l0x9 -removeonly
HP On-Screen Cap/Num/Scroll Lock Indicator-->C:\Windows\system32\OsdRemove.exe
HP Photosmart Essential 2.5-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216015FF}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
kgcbaby-->MsiExec.exe /I{E18B549C-5D15-45DA-8D8F-8FD2BD946344}
kgchday-->MsiExec.exe /I{11F3F858-4131-4FFA-A560-3FE282933B6E}
kgchlwn-->MsiExec.exe /I{03EDED24-8375-407D-A721-4643D9768BE1}
kgcinvt-->MsiExec.exe /I{9BD54685-1496-46A5-AB62-357CD140ED8B}
kgckids-->MsiExec.exe /I{693C08A7-9E76-43FF-B11E-9A58175474C4}
kgcmove-->MsiExec.exe /I{A1588373-1D86-4D44-86C9-78ABD190F9CC}
kgcvday-->MsiExec.exe /I{8A8664E1-84C8-4936-891C-BC1F07797549}
Kodak EasyShare software-->C:\ProgramData\Kodak\EasyShareSetup\$SETUP_1e0001_8000f\Setup.exe /APR-REMOVE
LabelPrint-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\Setup.exe" -uninstall
LightScribe System Software-->MsiExec.exe /X{7F10292C-A190-4176-A665-A1ED3478DF86}
LightScribeTemplateLabeler-->MsiExec.exe /X{305D4B08-5807-4475-B1C8-D54685534864}
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x9 UNINSTALL
Logitech QuickCam Driver Package-->"C:\Program Files\Common Files\LogiShrd\LogiDriverStore\lvdrivers\11.90.1262\LgDrvInst.exe" -remove -instdir"C:\Program Files\Common Files\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=200 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -arpregkey"lvdrivers_11.90" /clone_wait /hide_progress
Logitech QuickCam-->MsiExec.exe /I{937B232D-9776-471E-92BD-D424E514EF14}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (English)-->MsiExec.exe /X{95120000-00AF-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Works-->MsiExec.exe /I{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}
MSN-->C:\Program Files\MSN\MsnInstaller\msniadm.exe /Action:ARP
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
muvee autoProducer 6.1-->C:\Program Files\InstallShield Installation Information\{5115C036-C0D5-4E1B-81C9-542CA967478A}\muveesetup.exe -removeonly -runfromtemp
My HP Games-->"C:\Program Files\HP Games\Uninstall.exe"
netbrdg-->MsiExec.exe /I{4537EA4B-F603-4181-89FB-2953FC695AB1}
NVIDIA Drivers-->C:\Windows\system32\nvuninst.exe UninstallGUI
OfotoXMI-->MsiExec.exe /I{B162D0A6-9A1D-4B7C-91A5-88FB48113C45}
Power2Go-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" -uninstall
PowerDirector-->"C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstall
Python 2.5-->MsiExec.exe /I{0A2C5854-557E-48C8-835A-3B9F074BDCAA}
QuickTime-->MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
RAW Thumbnail Viewer-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAEF3BE9-F5CF-4355-BBC3-90134AD070F8}\Setup.exe" -l0x9
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m -nrg2709
ScanSoft PaperPort Viewer 7.0-->C:\Windows\IsUninst.exe -f"C:\Program Files\ScanSoft\PaperPort Viewer\Uninst.isu"
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB973704)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {E626DC89-A787-4553-9BB3-DC2EC7E1593F}
Security Update for Microsoft Office Excel 2007 (KB973593)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7D6255E3-3423-4D8B-A328-F6F8D28DD5FE}
Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Visio 2007 (KB947590)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {6BAD036C-261F-4BEF-96CF-C20678D07A41}
SFR-->MsiExec.exe /I{DB02F716-6275-42E9-B8D2-83BA2BF5100B}
SHASTA-->MsiExec.exe /I{605A4E39-613C-4A12-B56F-DEFBE6757237}
skin0001-->MsiExec.exe /I{5316DFC9-CE99-4458-9AB3-E8726EDE0210}
SKINXSDK-->MsiExec.exe /I{F4A2E7CC-60CA-4AFA-B67F-AD5E58173C3F}
Snapfish Picture Mover-->MsiExec.exe /X{029B5901-1F27-4347-9923-E8ACC8F54E15}
Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1\UIU32m.exe -U -ITrx200Cz.INF
staticcr-->MsiExec.exe /I{8943CE61-53BD-475E-90E1-A580869E98A2}
tooltips-->MsiExec.exe /I{E79987F0-0E34-42CC-B8FF-6C860AEEB26A}
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office 2007 Help for Common Features (KB963673)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}
Update for Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}
Update for Microsoft Office OneNote 2007 Help (KB963670)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2744EF05-38E1-4D5D-B333-E021EDAEA245}
Update for Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}
Update for Microsoft Office Script Editor Help (KB963671)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}
Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331}
Update for Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}
VPRINTOL-->MsiExec.exe /I{999D43F4-9709-4887-9B1A-83EBB15A8370}
WeatherBug Gadget-->MsiExec.exe /I{209CDA54-D390-46A2-A97C-7BF61734418D}
WIRELESS-->MsiExec.exe /I{F9593CFB-D836-49BC-BFF1-0E669A411D9F}
Yahoo! Install Manager-->C:\Windows\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~2.DLL
Yahoo! Search Protection-->C:\PROGRA~1\Yahoo!\SEARCH~1\UNINST~1.EXE
Yahoo! Software Update-->C:\PROGRA~1\Yahoo!\SOFTWA~1\UNINST~1.EXE
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE

======Hosts File======

69.10.51.38 a1.review.zdnet.com
69.10.51.38 d1.reviews.cnet.com
69.10.51.38 reviews.riverstreams.co.uk
69.10.51.38 reviews.download.com
69.10.51.38 review.2009softwarereviews.com
69.10.51.38 reviews.pcmag.com
69.10.51.38 reviews.pcadvisor.co.uk
69.10.51.38 reviews.techradar.com
69.10.51.38 reviews.pcpro.co.uk
69.10.51.38 www.reevoo.com

======Security center information======

AS: Windows Defender

=====Application event log=====

Computer Name: johncl-PC
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-3101306305-1647820146-257082228-1000_Classes:
Process 912 (\Device\HarddiskVolume1\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-3101306305-1647820146-257082228-1000_CLASSES

Record Number: 482
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20080402072734.000000-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: johncl-PC
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-3101306305-1647820146-257082228-1000:
Process 912 (\Device\HarddiskVolume1\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-3101306305-1647820146-257082228-1000

Record Number: 481
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20080402072733.000000-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: johncl-PC
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 467
Source Name: Microsoft-Windows-WMI
Time Written: 20080402072348.000000-000
Event Type: Error
User:

Computer Name: johncl-PC
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-3101306305-1647820146-257082228-1000:
Process 580 (\Device\HarddiskVolume1\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-3101306305-1647820146-257082228-1000

Record Number: 434
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20080402072142.000000-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: johncl-PC
Event Code: 1008
Message: The Windows Search Service is attempting to remove the old catalog.

Record Number: 390
Source Name: Microsoft-Windows-Search
Time Written: 20080402043950.000000-000
Event Type: Warning
User:

=====Security event log=====

Computer Name: johncl-PC
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 12421
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081125105242.964929-000
Event Type: Audit Success
User:

Computer Name: johncl-PC
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: JOHNCL-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x28c
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 12420
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081125105242.964929-000
Event Type: Audit Success
User:

Computer Name: johncl-PC
Event Code: 4648
Message: A logon was attempted using explicit credentials.

Subject:
Security ID: S-1-5-18
Account Name: JOHNCL-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Account Whose Credentials Were Used:
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon GUID: {00000000-0000-0000-0000-000000000000}

Target Server:
Target Server Name: localhost
Additional Information: localhost

Process Information:
Process ID: 0x28c
Process Name: C:\Windows\System32\services.exe

Network Information:
Network Address: -
Port: -

This event is generated when a process attempts to log on an account by explicitly specifying that account’s credentials. This most commonly occurs in batch-type configurations such as scheduled tasks, or when using the RUNAS command.
Record Number: 12419
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081125105242.963929-000
Event Type: Audit Success
User:

Computer Name: johncl-PC
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 12418
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081125105240.812923-000
Event Type: Audit Success
User:

Computer Name: johncl-PC
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: JOHNCL-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x28c
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 12417
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20081125105240.812923-000
Event Type: Audit Success
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\Common Files\ArcSoft\Bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\hp\bin\Python;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
"DFSTRACINGON"=FALSE
"PLATFORM"=HPD
"PCBRAND"=Presario
"OnlineServices"=Online Services
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip

-----------------EOF-----------------


Report •

#5
December 4, 2009 at 16:44:14
Jabuck,

It doesn't appear as though it'll allow me to post the gmer
logfile because it's too big. I'm gonna see if I can break it
down into separate posts:

GMER 1.0.15.15252 - http://www.gmer.net
Rootkit scan 2009-12-04 18:12:21
Windows 6.0.6002 Service Pack 2
Running: 7v90pmq2.exe; Driver:
C:\Users\johncl\AppData\Local\Temp\pxryqpog.sys


---- Kernel code sections - GMER 1.0.15 ----

.text C:\Windows\system32\DRIVERS\nvlddmkm.sys
section is writeable [0x8B807340, 0x3DA8C7, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!CreateDialogParamW
768872A2 5 Bytes JMP 6ED9DA08
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!GetAsyncKeyState
7688863C 5 Bytes JMP 6ECB90EF
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588]
USER32.dll!SetWindowsHookExW
768887AD 5 Bytes JMP 6ED997F5
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!CallNextHookEx
76888E3B 5 Bytes JMP 6ED8CE79
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588]
USER32.dll!UnhookWindowsHookEx
768898DB 5 Bytes JMP 6ED0466C
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!EnableWindow
7688CD8B 5 Bytes JMP 6ED9D895
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!CreateWindowExW
76891305 5 Bytes JMP 6ED9D67C
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!GetKeyState
76898CB1 5 Bytes JMP 6ED9CE43
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!IsDialogMessageW
768A0745 5 Bytes JMP 6ECC5947
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!CreateDialogParamA
768A17AA 5 Bytes JMP 6EE94DFB
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!IsDialogMessage
768A1847 5 Bytes JMP 6EE94697
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588]
USER32.dll!CreateDialogIndirectParamA
768A26F1 5 Bytes JMP 6EE94E32
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588]
USER32.dll!CreateDialogIndirectParamW
768A9A62 5 Bytes JMP 6EE94E69
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!SetKeyboardState
768B0987 5 Bytes JMP 6EE94A06
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!DialogBoxParamW
768B10B0 5 Bytes JMP 6ECC5435
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588]
USER32.dll!DialogBoxIndirectParamW
768B2EF5 5 Bytes JMP 6EE9418F
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!SendInput
768B2F75 5 Bytes JMP 6EE955C3
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!EndDialog
768B326E 5 Bytes JMP 6ECC7DEE
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!SetCursorPos
768C6FB2 5 Bytes JMP 6EE95617
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!DialogBoxParamA
768C8152 5 Bytes JMP 6EE9412C
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588]
USER32.dll!DialogBoxIndirectParamA
768C847D 5 Bytes JMP 6EE941F2
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588]
USER32.dll!MessageBoxIndirectA
768DD4D9 5 Bytes JMP 6EE940C1
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588]
USER32.dll!MessageBoxIndirectW
768DD5D3 5 Bytes JMP 6EE94056
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!MessageBoxExA
768DD639 5 Bytes JMP 6EE93FF4
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!MessageBoxExW
768DD65D 5 Bytes JMP 6EE93F92
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] USER32.dll!keybd_event
768DD972 5 Bytes JMP 6EE95947
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] SHELL32.dll!SHRestricted + D95
75B58988 4 Bytes [4D, 30, 16, 69]
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] SHELL32.dll!SHRestricted + D9D
75B58990 8 Bytes [57, 2F, 16, 69, 9C, 5B, 15, ...]
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] ole32.dll!OleLoadFromStream
75711E12 5 Bytes JMP 6EE944F7
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[4588] ole32.dll!CoCreateInstance
75749EA6 5 Bytes JMP 6ED9D6D8
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444] USER32.dll!CreateWindowExW
76891305 5 Bytes JMP 6ED9D67C
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444] USER32.dll!DialogBoxParamW
768B10B0 5 Bytes JMP 6ECC5435
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444]
USER32.dll!DialogBoxIndirectParamW
768B2EF5 5 Bytes JMP 6EE9418F
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444] USER32.dll!DialogBoxParamA
768C8152 5 Bytes JMP 6EE9412C
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444]
USER32.dll!DialogBoxIndirectParamA
768C847D 5 Bytes JMP 6EE941F2
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444]
USER32.dll!MessageBoxIndirectA
768DD4D9 5 Bytes JMP 6EE940C1
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444]
USER32.dll!MessageBoxIndirectW
768DD5D3 5 Bytes JMP 6EE94056
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444] USER32.dll!MessageBoxExA
768DD639 5 Bytes JMP 6EE93FF4
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5444] USER32.dll!MessageBoxExW
768DD65D 5 Bytes JMP 6EE93F92
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!CreateDialogParamW
768872A2 5 Bytes JMP 6ED9DA08
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!GetAsyncKeyState
7688863C 5 Bytes JMP 6ECB90EF
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484]
USER32.dll!SetWindowsHookExW
768887AD 5 Bytes JMP 6ED997F5
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!CallNextHookEx
76888E3B 5 Bytes JMP 6ED8CE79
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484]
USER32.dll!UnhookWindowsHookEx
768898DB 5 Bytes JMP 6ED0466C
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!EnableWindow
7688CD8B 5 Bytes JMP 6ED9D895
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!CreateWindowExW
76891305 5 Bytes JMP 6ED9D67C
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!GetKeyState
76898CB1 5 Bytes JMP 6ED9CE43
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!IsDialogMessageW
768A0745 5 Bytes JMP 6ECC5947
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!CreateDialogParamA
768A17AA 5 Bytes JMP 6EE94DFB
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!IsDialogMessage
768A1847 5 Bytes JMP 6EE94697
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484]
USER32.dll!CreateDialogIndirectParamA
768A26F1 5 Bytes JMP 6EE94E32
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484]
USER32.dll!CreateDialogIndirectParamW
768A9A62 5 Bytes JMP 6EE94E69
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!SetKeyboardState
768B0987 5 Bytes JMP 6EE94A06
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!DialogBoxParamW
768B10B0 5 Bytes JMP 6ECC5435
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484]
USER32.dll!DialogBoxIndirectParamW
768B2EF5 5 Bytes JMP 6EE9418F
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!SendInput
768B2F75 5 Bytes JMP 6EE955C3
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!EndDialog
768B326E 5 Bytes JMP 6ECC7DEE
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!SetCursorPos
768C6FB2 5 Bytes JMP 6EE95617
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!DialogBoxParamA
768C8152 5 Bytes JMP 6EE9412C
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484]
USER32.dll!DialogBoxIndirectParamA
768C847D 5 Bytes JMP 6EE941F2
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484]
USER32.dll!MessageBoxIndirectA
768DD4D9 5 Bytes JMP 6EE940C1
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484]
USER32.dll!MessageBoxIndirectW
768DD5D3 5 Bytes JMP 6EE94056
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!MessageBoxExA
768DD639 5 Bytes JMP 6EE93FF4
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!MessageBoxExW
768DD65D 5 Bytes JMP 6EE93F92
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] USER32.dll!keybd_event
768DD972 5 Bytes JMP 6EE95947
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] SHELL32.dll!SHRestricted + D95
75B58988 4 Bytes [4D, 30, 16, 69]
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] SHELL32.dll!SHRestricted + D9D
75B58990 8 Bytes [57, 2F, 16, 69, 9C, 5B, 15, ...]
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] ole32.dll!OleLoadFromStream
75711E12 5 Bytes JMP 6EE944F7
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)
.text C:\Program Files\Internet
Explorer\iexplore.exe[5484] ole32.dll!CoCreateInstance
75749EA6 5 Bytes JMP 6ED9D6D8
C:\Windows\system32\IEFRAME.dll (Internet
Explorer/Microsoft Corporation)


Report •

#6
December 4, 2009 at 16:45:20
---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Program Files\Windows
Sidebar\sidebar.exe[2252] @
C:\Windows\system32\kernel32.dll [ntdll.dll!NtCreateFile]
[001E2F20] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Program Files\Windows
Sidebar\sidebar.exe[2252] @
C:\Windows\system32\kernel32.dll [ntdll.dll!NtClose]
[001E2CF0] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Program Files\Windows
Sidebar\sidebar.exe[2252] @
C:\Windows\system32\kernel32.dll
[ntdll.dll!NtDeviceIoControlFile]
[001E2C90] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Program Files\Windows
Sidebar\sidebar.exe[2252] @
C:\Windows\system32\kernel32.dll
[ntdll.dll!NtDuplicateObject]
[001E2CC0] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Windows\Explorer.EXE[3488] @
C:\Windows\system32\kernel32.dll [ntdll.dll!NtCreateFile]
[004D2F20] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Windows\Explorer.EXE[3488] @
C:\Windows\system32\kernel32.dll [ntdll.dll!NtClose]
[004D2CF0] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Windows\Explorer.EXE[3488] @
C:\Windows\system32\kernel32.dll
[ntdll.dll!NtDeviceIoControlFile]
[004D2C90] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Windows\Explorer.EXE[3488] @
C:\Windows\system32\kernel32.dll
[ntdll.dll!NtDuplicateObject]
[004D2CC0] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Program
Files\Logitech\QuickCam\Quickcam.exe[4076] @
C:\Windows\system32\kernel32.dll [ntdll.dll!NtCreateFile]
[01C92F20] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Program
Files\Logitech\QuickCam\Quickcam.exe[4076] @
C:\Windows\system32\kernel32.dll [ntdll.dll!NtClose]
[01C92CF0] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Program
Files\Logitech\QuickCam\Quickcam.exe[4076] @
C:\Windows\system32\kernel32.dll
[ntdll.dll!NtDeviceIoControlFile]
[01C92C90] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Program
Files\Logitech\QuickCam\Quickcam.exe[4076] @
C:\Windows\system32\kernel32.dll
[ntdll.dll!NtDuplicateObject]
[01C92CC0] C:\Windows\TEMP\logishrd\LVPrcInj06.dll
(Camera Helper Library./Logitech Inc.)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ADVAPI32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\RPCRT4.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!CopyFileW]
[6914E1E9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!MoveFileW]
[69150994] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!CreateProcessW]
[6914A3FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!SetCurrentDirectoryW]
[69151D56] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!FindNextFileW]
[69152999] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!WritePrivateProfileStringW]
[6914DC5C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!GetPrivateProfileStringW]
[6914D4B8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegQueryInfoKeyW]
[6915FBB3] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegEnumValueW]
[6916051D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegOpenKeyExW]
[6915EB3D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegQueryValueExW]
[6915F817] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegDeleteKeyW]
[6915EF31] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegCreateKeyExW]
[6915E5C5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegCloseKey]
[6915ED95] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW]
[6914E1E9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!FindFirstFileA]
[69152CD2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!FindNextFileA]
[69152926] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!FindNextFileW]
[69152999] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!GetFileAttributesA]
[6914BD77] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)


Report •

#7
December 4, 2009 at 16:46:30
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!SetCurrentDirectoryA]
[6915173F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!SetFileAttributesA]
[6914BFCD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateDirectoryA]
[69150F0F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!RemoveDirectoryA]
[691514E9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileA]
[6914ED1B] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!GetFileAttributesW]
[6914BEA2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!SetCurrentDirectoryW]
[69151D56] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!SetFileAttributesW]
[6914C0FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateDirectoryW]
[6915103D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileW]
[69150994] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!RemoveDirectoryW]
[69151614] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileA]
[69150921] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateProcessA]
[6914A073] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateProcessW]
[6914A3FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileA]
[6914E717] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!ReplaceFileW]
[69150C95] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!WritePrivateProfileStringW]
[6914DC5C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetPrivateProfileStringW]
[6914D4B8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetPrivateProfileStringA]
[6914D361] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!SetFileAttributesW]
[6914C0FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindNextFileW]
[69152999] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetFileAttributesW]
[6914BEA2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!SetFileAttributesA]
[6914BFCD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!CreateFileA]
[6914E717] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindFirstFileA]
[69152CD2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindNextFileA]
[69152926] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)

Report •

#8
December 4, 2009 at 16:47:39
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!SearchPathA]
[691523A5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetFileAttributesA]
[6914BD77] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpW]
[6914FAAA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpA]
[6914F973] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegCloseKey]
[6915ED95] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegCreateKeyExA]
[6915E43D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegDeleteKeyA]
[6915EDE8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryInfoKeyA]
[6915F9B7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegOpenKeyExA]
[6915E9C5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegCreateKeyExW]
[6915E5C5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegOpenKeyExW]
[6915EB3D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumKeyExW]
[6916020D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryValueW]
[6915F4DB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegDeleteKeyW]
[6915EF31] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryInfoKeyW]
[6915FBB3] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryValueExW]
[6915F817] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumValueW]
[6916051D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumKeyW]
[6915FF19] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumKeyExA]
[69160085] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumValueA]
[69160395] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumKeyA]
[6915FDAF] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryValueExA]
[6915F677] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetPrivateProfileSectionW]
[6914CFA8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!FindNextFileW]
[69152999] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!ReplaceFileW]
[69150C95] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetPrivateProfileSectionNamesW]
[6914D22A] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!WritePrivateProfileSectionW]
[6914D9DA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!WritePrivateProfileStringW]
[6914DC5C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CreateHardLinkW]
[6914EB68] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!SetCurrentDirectoryW]
[69151D56] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CopyFileW]
[6914E1E9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetBinaryTypeW]
[6914CAA7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CreateProcessW]
[6914A3FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!MoveFileW]
[69150994] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetShortPathNameA]
[6914C709] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetFileAttributesA]
[6914BD77] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetPrivateProfileIntW]
[6914CD20] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetPrivateProfileStringW]
[6914D4B8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!RemoveDirectoryW]
[69151614] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CreateDirectoryW]
[6915103D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!SetFileAttributesW]
[6914C0FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetFileAttributesW]
[6914BEA2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!MoveFileExW]
[691509B9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)

Report •

#9
December 4, 2009 at 16:47:58
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetShortPathNameW]
[6914C848] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetFileAttributesExW]
[6914C368] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetLongPathNameW]
[6914C5D8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[USER32.dll!LoadImageW]
[6914F0D0] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW]
[6914FAAA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[USER32.dll!PrivateExtractIconsW]
[6914F5C5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathCreateFromUrlW]
[691565DA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!AssocQueryStringByKeyW]
[6915620B] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHCreateStreamOnFileW]
[69157595] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!AssocQueryKeyW]
[691560AE] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!AssocQueryStringW]
[6915615B] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHDeleteKeyA]
[691575E7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathCombineW]
[69156533] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHOpenRegStream2W]
[6915799A] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsDirectoryW]
[6915684F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsURLW]
[69156E45] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsRootA]
[69156AFB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsRootW]
[69156B47] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathStripToRootW]
[69157281] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathFindOnPathW]
[69156716] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathStripPathW]
[691571ED] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathRemoveArgsW]
[69157021] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegGetBoolUSValueW]
[69157FBE] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathSkipRootW]
[69157159] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsDirectoryEmptyW]
[691568E7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsSystemFolderW]
[69156BE2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsDirectoryA]
[69156803] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathRelativePathToW]
[69156F81] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathBuildRootA]
[691563A5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegGetPathW]
[691580BD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegSetPathW]
[69158513] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegGetUSValueW]
[69158176] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHQueryValueExW]
[69157BA4] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegGetValueW]
[69158235] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsNetworkPathW]
[6915697F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsUNCServerShareW]
[69156DAD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsUNCServerW]
[69156D15] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathUnExpandEnvStringsW]
[6915731F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathMakeSystemFolderW]
[69156EDD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsUNCW]
[69156C7D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsRelativeW]
[69156AAF] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHGetValueW]
[691578EA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathBuildRootW]
[691563F4] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHDeleteValueW]
[691576D7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHSetValueW]
[69158732] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHEnumKeyExW]
[6915777E] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHEnumValueW]
[69157831] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathFileExistsW]
[6915667B] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHDeleteKeyW]
[69157636] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SHELL32.dll
[ntdll.dll!NtQueryDirectoryFile]
[6914BB38] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll [KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!CreateProcessW]
[6914A3FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll [KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!GetShortPathNameW]
[6914C848] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!GetFileAttributesExW]
[6914C368] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!GetFileAttributesW]
[6914BEA2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHRegGetValueW]
[69158235] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHRegGetValueA]
[691581D7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!PathUnExpandEnvStringsA]
[691572CD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHDeleteKeyA]
[691575E7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHDeleteValueW]
[691576D7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!PathCreateFromUrlW]
[691565DA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHGetValueA]
[6915788F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHSetValueA]
[691586D7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHGetValueW]
[691578EA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHSetValueW]
[69158732] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!PathCombineW]
[69156533] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\WININET.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\Secur32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\ws2_32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\USERENV.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\SAMLIB.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\iphlpapi.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)

Report •

#10
December 4, 2009 at 16:48:20
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\NETAPI32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[4588] @
C:\Windows\system32\CRYPT32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ADVAPI32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\RPCRT4.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!CopyFileW]
[6914E1E9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!MoveFileW]
[69150994] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!CreateProcessW]
[6914A3FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!SetCurrentDirectoryW]
[69151D56] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!FindNextFileW]
[69152999] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!WritePrivateProfileStringW]
[6914DC5C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[KERNEL32.dll!GetPrivateProfileStringW]
[6914D4B8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegQueryInfoKeyW]
[6915FBB3] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegEnumValueW]
[6916051D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegOpenKeyExW]
[6915EB3D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegQueryValueExW]
[6915F817] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegDeleteKeyW]
[6915EF31] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegCreateKeyExW]
[6915E5C5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USER32.dll
[ADVAPI32.dll!RegCloseKey]
[6915ED95] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW]
[6914E1E9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\GDI32.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!FindFirstFileA]
[69152CD2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!FindNextFileA]
[69152926] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!FindNextFileW]
[69152999] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!GetFileAttributesA]
[6914BD77] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!SetCurrentDirectoryA]
[6915173F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!SetFileAttributesA]
[6914BFCD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateDirectoryA]
[69150F0F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!RemoveDirectoryA]
[691514E9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!DeleteFileA]
[6914ED1B] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!GetFileAttributesW]
[6914BEA2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!SetCurrentDirectoryW]
[69151D56] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!SetFileAttributesW]
[6914C0FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateDirectoryW]
[6915103D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileW]
[69150994] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!RemoveDirectoryW]
[69151614] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!MoveFileA]
[69150921] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateProcessA]
[6914A073] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)

Report •

#11
December 4, 2009 at 16:49:20
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateProcessW]
[6914A3FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll [KERNEL32.dll!CreateFileA]
[6914E717] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\msvcrt.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!ReplaceFileW]
[69150C95] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!WritePrivateProfileStringW]
[6914DC5C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetPrivateProfileStringW]
[6914D4B8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetPrivateProfileStringA]
[6914D361] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!SetFileAttributesW]
[6914C0FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindNextFileW]
[69152999] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetFileAttributesW]
[6914BEA2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!SetFileAttributesA]
[6914BFCD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!CreateFileA]
[6914E717] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindFirstFileA]
[69152CD2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindNextFileA]
[69152926] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!SearchPathA]
[691523A5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetFileAttributesA]
[6914BD77] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpW]
[6914FAAA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpA]
[6914F973] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegCloseKey]
[6915ED95] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegCreateKeyExA]
[6915E43D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegDeleteKeyA]
[6915EDE8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryInfoKeyA]
[6915F9B7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegOpenKeyExA]
[6915E9C5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegCreateKeyExW]
[6915E5C5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)

Report •

#12
December 4, 2009 at 16:49:45
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegOpenKeyExW]
[6915EB3D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumKeyExW]
[6916020D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryValueW]
[6915F4DB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegDeleteKeyW]
[6915EF31] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryInfoKeyW]
[6915FBB3] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryValueExW]
[6915F817] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumValueW]
[6916051D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumKeyW]
[6915FF19] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumKeyExA]
[69160085] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumValueA]
[69160395] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegEnumKeyA]
[6915FDAF] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHLWAPI.dll
[ADVAPI32.dll!RegQueryValueExA]
[6915F677] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetPrivateProfileSectionW]
[6914CFA8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!FindNextFileW]
[69152999] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!ReplaceFileW]
[69150C95] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetPrivateProfileSectionNamesW]
[6914D22A] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!WritePrivateProfileSectionW]
[6914D9DA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!WritePrivateProfileStringW]
[6914DC5C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CreateHardLinkW]
[6914EB68] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!SetCurrentDirectoryW]
[69151D56] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CopyFileW]
[6914E1E9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetBinaryTypeW]
[6914CAA7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CreateProcessW]
[6914A3FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!MoveFileW]
[69150994] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetShortPathNameA]
[6914C709] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetFileAttributesA]
[6914BD77] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetPrivateProfileIntW]
[6914CD20] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetPrivateProfileStringW]
[6914D4B8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!RemoveDirectoryW]
[69151614] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CreateDirectoryW]
[6915103D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!SetFileAttributesW]
[6914C0FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetFileAttributesW]
[6914BEA2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!MoveFileExW]
[691509B9] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetShortPathNameW]
[6914C848] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetFileAttributesExW]
[6914C368] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[KERNEL32.dll!GetLongPathNameW]
[6914C5D8] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[USER32.dll!LoadImageW]
[6914F0D0] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW]
[6914FAAA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[USER32.dll!PrivateExtractIconsW]
[6914F5C5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathCreateFromUrlW]
[691565DA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!AssocQueryStringByKeyW]
[6915620B] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHCreateStreamOnFileW]
[69157595] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!AssocQueryKeyW]
[691560AE] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!AssocQueryStringW]
[6915615B] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)

Report •

#13
December 4, 2009 at 16:50:07
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHDeleteKeyA]
[691575E7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathCombineW]
[69156533] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHOpenRegStream2W]
[6915799A] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsDirectoryW]
[6915684F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsURLW]
[69156E45] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsRootA]
[69156AFB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsRootW]
[69156B47] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathStripToRootW]
[69157281] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathFindOnPathW]
[69156716] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathStripPathW]
[691571ED] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathRemoveArgsW]
[69157021] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegGetBoolUSValueW]
[69157FBE] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathSkipRootW]
[69157159] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsDirectoryEmptyW]
[691568E7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsSystemFolderW]
[69156BE2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsDirectoryA]
[69156803] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathRelativePathToW]
[69156F81] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathBuildRootA]
[691563A5] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegGetPathW]
[691580BD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegSetPathW]
[69158513] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegGetUSValueW]
[69158176] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHQueryValueExW]
[69157BA4] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHRegGetValueW]
[69158235] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsNetworkPathW]
[6915697F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsUNCServerShareW]
[69156DAD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsUNCServerW]
[69156D15] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathUnExpandEnvStringsW]
[6915731F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathMakeSystemFolderW]
[69156EDD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsUNCW]
[69156C7D] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathIsRelativeW]
[69156AAF] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHGetValueW]
[691578EA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathBuildRootW]
[691563F4] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHDeleteValueW]
[691576D7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHSetValueW]
[69158732] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHEnumKeyExW]
[6915777E] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHEnumValueW]
[69157831] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!PathFileExistsW]
[6915667B] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[SHLWAPI.dll!SHDeleteKeyW]
[69157636] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SHELL32.dll
[ntdll.dll!NtQueryDirectoryFile]
[6914BB38] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll [KERNEL32.dll!FindClose]
[69153ADC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!FindFirstFileW]
[69153035] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!LoadLibraryExW]
[6915007C] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!SearchPathW]
[69151AEC] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!CreateProcessW]
[6914A3FB] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll [KERNEL32.dll!DeleteFileW]
[6914EE46] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!GetShortPathNameW]
[6914C848] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!GetFileAttributesExW]
[6914C368] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateFileW]
[6914E860] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!LoadLibraryW]
[6914FD66] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll
[KERNEL32.dll!GetFileAttributesW]
[6914BEA2] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA]
[6914FBE1] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\USERENV.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\Secur32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHRegGetValueW]
[69158235] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHRegGetValueA]
[691581D7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!PathUnExpandEnvStringsA]
[691572CD] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHDeleteKeyA]
[691575E7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHDeleteValueW]
[691576D7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!PathCreateFromUrlW]
[691565DA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHGetValueA]
[6915788F] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHSetValueA]
[691586D7] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHGetValueW]
[691578EA] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!SHSetValueW]
[69158732] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[SHLWAPI.dll!PathCombineW]
[69156533] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\WININET.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\ws2_32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\SAMLIB.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\NETAPI32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\CRYPT32.dll
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)
IAT C:\Program Files\Internet
Explorer\iexplore.exe[5484] @
C:\Windows\system32\IPHLPAPI.DLL
[KERNEL32.dll!GetProcAddress]
[691482F6] C:\Program Files\Internet Explorer\IEShims.dll
(Internet Explorer Compatibility Shims/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\tdx \Device\Tcp
avgtdix.sys (AVG Network connection watcher/AVG
Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Udp
avgtdix.sys (AVG Network connection watcher/AVG
Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\RawIp
avgtdix.sys (AVG Network connection watcher/AVG
Technologies CZ, s.r.o.)

---- Registry - GMER 1.0.15 ----

Reg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Share
dDLLs@C:\Program Files\Nova Development\Art Explosion
Publisher Pro\Templates\Calendars\Year on a Page\8\xbdx11
inch\Business Bank.npp 1
Reg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Share
dDLLs@C:\Program Files\Nova Development\Art Explosion
Publisher Pro\Templates\Calendars\Year on a Page\8\xbdx11
inch\Business.npp 1

---- EOF - GMER 1.0.15 ----


Report •

#14
December 4, 2009 at 16:51:02
Please download OTL from following site:

OTL

1. Save it to your desktop
2. Double click the OTL icon on your desktop.
3. Under the Custom Scans/Fixes box at the bottom, paste in the following,everything between the X's:


XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
:Commands
[purity]
[resethosts]
[emptytemp]
[Reboot]
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

5. Then click the Run Fix button at the top
6.Let the program run unhindered, reboot the PC when it is done
7. Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.


Report •

#15
December 4, 2009 at 16:52:56
Per your question: I haven't seen any symptoms after I ran
the AVG and Malwarebytes scans.

There used to be a Registry Defender pop-up that would
appear before I ran the scans, but, I haven't seen them since.

Everything appears fine, but, you never know, hence my
request for y'all to double-check my work.

I appreciate your time and assistance. Thank you!


Report •

#16
December 4, 2009 at 17:07:11
OTL logfile created on: 12/4/2009 7:06:50 PM - Run 1
OTL by OldTimer - Version 3.1.11.6 Folder = C:\Users\johncl\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18828)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.87 Gb Total Physical Memory | 0.94 Gb Available Physical Memory | 50.24% Memory free
3.98 Gb Paging File | 2.85 Gb Available in Paging File | 71.62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 456.48 Gb Total Space | 430.07 Gb Free Space | 94.21% Space Free | Partition Type: NTFS
Drive D: | 9.28 Gb Total Space | 1.26 Gb Free Space | 13.59% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: JOHNCL-PC
Current User Name: johncl
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009/12/04 18:57:36 | 00,536,064 | ---- | M] (OldTimer Tools) -- C:\Users\johncl\Desktop\OTL.exe
PRC - [2009/12/01 23:47:15 | 01,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2009/12/01 23:47:09 | 02,020,120 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2009/12/01 23:47:03 | 00,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2009/12/01 23:47:02 | 00,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2009/12/01 23:47:02 | 00,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2009/12/01 23:47:02 | 00,502,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2009/12/01 23:47:01 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2009/11/02 23:06:22 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/10/10 13:32:18 | 00,203,264 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2009/09/28 09:42:50 | 00,109,056 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2009/08/26 23:23:17 | 00,638,232 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009/08/05 10:27:00 | 01,644,088 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
PRC - [2009/07/17 21:12:12 | 00,257,440 | R--- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10c.exe
PRC - [2009/04/11 00:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/29 05:24:05 | 00,091,440 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
PRC - [2009/03/17 12:25:40 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2009/02/03 07:15:18 | 00,111,856 | ---- | M] (Yahoo! Inc) -- C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
PRC - [2008/12/20 06:50:34 | 02,656,528 | ---- | M] () -- C:\Program Files\Logitech\QuickCam\Quickcam.exe
PRC - [2008/12/20 06:46:58 | 00,558,864 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2008/12/16 20:59:50 | 00,150,040 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2008/11/09 14:48:14 | 00,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/10/30 14:16:42 | 00,282,624 | ---- | M] (Eastman Kodak Company) -- C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
PRC - [2008/09/19 09:28:49 | 00,303,104 | ---- | M] (Motive Communications, Inc.) -- C:\Program Files\Common Files\Motive\McciCMService.exe
PRC - [2008/07/03 10:27:12 | 06,266,880 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2008/05/22 13:49:00 | 00,118,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2008/01/20 20:25:33 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2008/01/20 20:24:59 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2008/01/11 21:16:38 | 00,039,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
PRC - [2007/10/18 14:37:04 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\drivers\XAudio.exe
PRC - [2007/09/19 19:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
PRC - [2007/05/08 16:24:20 | 00,054,840 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2007/05/07 12:35:56 | 01,273,856 | ---- | M] () -- C:\Program Files\Snapfish Picture Mover\SnapfishMediaDetector.exe
PRC - [2007/04/18 09:01:34 | 00,065,536 | ---- | M] (Hewlett-Packard Company) -- C:\hp\support\hpsysdrv.exe
PRC - [2007/02/28 13:35:32 | 01,011,200 | ---- | M] (Motive Communications, Inc.) -- C:\Program Files\SBC\update\SST.exe
PRC - [2007/02/15 05:59:00 | 00,118,784 | ---- | M] (OsdMaestro) -- C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
PRC - [2005/03/30 12:43:08 | 00,053,248 | ---- | M] () -- C:\Program Files\Initio\AcomData PushButton Manager v1.10\inihid_xp.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2009/12/04 18:57:36 | 00,536,064 | ---- | M] (OldTimer Tools) -- C:\Users\johncl\Desktop\OTL.exe
MOD - [2009/12/01 23:47:49 | 00,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
MOD - [2009/04/11 00:21:38 | 01,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009/12/01 23:47:03 | 00,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2009/12/01 23:47:01 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2009/09/28 09:42:50 | 00,109,056 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2009/09/24 19:27:04 | 00,793,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/03/17 12:25:40 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2008/12/16 20:59:50 | 00,150,040 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2008/11/09 14:48:14 | 00,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/09/19 09:28:49 | 00,303,104 | ---- | M] (Motive Communications, Inc.) -- C:\Program Files\Common Files\Motive\McciCMService.exe -- (McciCMService)
SRV - [2008/05/22 13:49:00 | 00,118,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe -- (nvsvc)
SRV - [2007/10/18 14:37:04 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\drivers\XAudio.exe -- (XAudioService)
SRV - [2007/09/19 19:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service)
SRV - [2007/08/24 02:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2007/07/23 17:33:06 | 00,181,800 | ---- | M] (WildTangent, Inc.) -- C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2006/11/02 06:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart)
SRV - [2006/10/26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2005/11/14 00:06:04 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?T...
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?T...

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?fr=fp-yie8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\Extensions\\Seekmo@Seekmo.com: C:\Program Files\Seekmo\bin\10.3.86.0\firefox\extensions


O1 HOSTS File: (98 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll (Yahoo! Inc.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [HP Health Check Scheduler] File not found
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [OsdMaestro] C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe (OsdMaestro)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SBC_McciTrayApp] C:\Program Files\SBC\update\SST.exe (Motive Communications, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe File not found
O4 - HKLM..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O4 - HKCU..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe (Hewlett-Packard)
O4 - HKCU..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKCU..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O4 - Startup: C:\Users\johncl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AcomData PushButton Manager.lnk = C:\Users\johncl\AppData\Roaming\Microsoft\Installer\{3EB255B0-0707-4A8E-8044-B4B51A36CEDA}\_124305e.exe ()
O4 - Startup: C:\Users\johncl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RDP2009.lnk = C:\Program Files\Angle Interactive\RDP2009\RDP2009.exe (Angle Interactive)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/downl... (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll (Installation Support)
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} https://www-secure.symantec.com/techsupp/asa/ss/sa/sa_cabs/tgctlsr.cab (Symantec Script Runner Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/ji... (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/ji... (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/ji... (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/ji... (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.94.156.1 68.94.157.1
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/02/20 05:23:48 | 00,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 14 Days ==========[/color]

[2009/12/04 18:58:36 | 00,000,000 | ---D | C] -- C:\_OTL
[2009/12/04 18:57:35 | 00,536,064 | ---- | C] (OldTimer Tools) -- C:\Users\johncl\Desktop\OTL.exe
[2009/12/04 17:38:13 | 00,000,000 | ---D | C] -- C:\Program Files\trend micro
[2009/12/04 17:38:12 | 00,000,000 | ---D | C] -- C:\rsit
[2009/12/02 03:20:19 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2009/12/02 03:00:23 | 00,000,000 | -HSD | C] -- C:\Config.Msi
[2009/12/02 01:37:56 | 00,000,000 | ---D | C] -- C:\Users\johncl\AppData\Roaming\Malwarebytes
[2009/12/02 01:37:51 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/12/02 01:37:50 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/12/02 01:37:50 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/12/02 01:37:50 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/12/01 23:47:52 | 00,000,000 | -H-D | C] -- C:\$AVG
[2009/12/01 23:47:49 | 00,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2009/12/01 23:47:48 | 00,360,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2009/12/01 23:47:38 | 00,333,192 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2009/12/01 23:47:38 | 00,028,424 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2009/12/01 23:47:24 | 00,000,000 | ---D | C] -- C:\Windows\System32\drivers\Avg
[2009/12/01 23:47:22 | 00,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar
[2009/12/01 23:46:58 | 00,000,000 | ---D | C] -- C:\ProgramData\avg9
[2009/12/01 23:46:58 | 00,000,000 | ---D | C] -- C:\Program Files\AVG
[2009/12/01 23:17:39 | 00,000,000 | ---D | C] -- C:\Users\johncl\Documents\Security

[color=#E56717]========== Files - Modified Within 14 Days ==========[/color]

[2009/12/04 19:06:48 | 02,097,152 | -HS- | M] () -- C:\Users\johncl\NTUSER.DAT
[2009/12/04 19:05:27 | 00,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{3A6A19C6-40D0-4DFA-A737-77943C2B09F9}.job
[2009/12/04 19:04:38 | 00,002,661 | ---- | M] () -- C:\Users\johncl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AcomData PushButton Manager.lnk
[2009/12/04 19:04:11 | 00,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/12/04 19:04:11 | 00,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/12/04 19:04:08 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/12/04 19:04:06 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/12/04 19:04:03 | 20,102,67648 | -HS- | M] () -- C:\hiberfil.sys
[2009/12/04 19:03:20 | 00,524,288 | -HS- | M] () -- C:\Users\johncl\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2009/12/04 19:03:20 | 00,065,536 | -HS- | M] () -- C:\Users\johncl\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2009/12/04 18:58:38 | 00,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2009/12/04 18:57:36 | 00,536,064 | ---- | M] (OldTimer Tools) -- C:\Users\johncl\Desktop\OTL.exe
[2009/12/04 18:20:11 | 00,690,960 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/12/04 18:20:11 | 00,595,446 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/12/04 18:20:11 | 00,101,144 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/12/04 17:27:28 | 46,173,632 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2009/12/04 17:26:25 | 00,112,018 | ---- | M] () -- C:\Windows\System32\drivers\Avg\microavi.avg
[2009/12/03 00:52:12 | 03,475,817 | -H-- | M] () -- C:\Users\johncl\AppData\Local\IconCache.db
[2009/12/02 03:36:00 | 00,000,326 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForjohncl.job
[2009/12/02 03:19:56 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2009/12/02 01:37:54 | 00,000,824 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/01 23:47:49 | 00,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
[2009/12/01 23:47:49 | 00,001,653 | ---- | M] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk
[2009/12/01 23:47:48 | 00,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2009/12/01 23:47:38 | 00,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2009/12/01 23:47:38 | 00,113,461 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm
[2009/12/01 23:47:38 | 00,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2009/12/01 23:47:26 | 00,492,629 | ---- | M] () -- C:\Windows\System32\drivers\Avg\miniavi.avg
[2009/12/01 23:47:25 | 06,061,540 | ---- | M] () -- C:\Windows\System32\drivers\Avg\avi7.avg

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2009/12/02 03:19:56 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2009/12/02 01:37:54 | 00,000,824 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/01 23:47:49 | 00,001,653 | ---- | C] () -- C:\Users\Public\Desktop\AVG Free 9.0.lnk
[2009/12/01 23:47:38 | 00,113,461 | ---- | C] () -- C:\Windows\System32\drivers\Avg\iavichjw.avm
[2009/12/01 23:47:26 | 46,173,632 | ---- | C] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2009/12/01 23:47:26 | 00,112,018 | ---- | C] () -- C:\Windows\System32\drivers\Avg\microavi.avg
[2009/12/01 23:47:25 | 00,492,629 | ---- | C] () -- C:\Windows\System32\drivers\Avg\miniavi.avg
[2009/12/01 23:47:24 | 06,061,540 | ---- | C] () -- C:\Windows\System32\drivers\Avg\avi7.avg
[2009/09/16 19:15:51 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/04/18 09:21:07 | 00,081,110 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2009/01/28 22:01:50 | 00,000,144 | ---- | C] () -- C:\Windows\Ppviewer.INI
[2008/12/16 20:58:54 | 00,025,624 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2008/12/16 20:50:56 | 00,013,584 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLgFT.dll
[2008/07/19 21:01:57 | 00,004,608 | ---- | C] () -- C:\Users\johncl\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/04/03 11:12:09 | 00,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
[2008/04/03 11:08:49 | 00,000,084 | ---- | C] () -- C:\Windows\EPSPRX595.ini
[2008/04/02 01:23:38 | 00,000,680 | ---- | C] () -- C:\Users\johncl\AppData\Local\d3d9caps.dat
[2008/02/20 05:24:05 | 00,000,068 | ---- | C] () -- C:\Windows\System32\Compaq_Demo.ini
[2008/02/20 05:14:28 | 00,000,342 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008/02/20 05:08:00 | 00,327,680 | ---- | C] () -- C:\Windows\System32\pythoncom25.dll
[2008/02/20 05:08:00 | 00,102,400 | ---- | C] () -- C:\Windows\System32\pywintypes25.dll
[2006/11/02 06:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 01:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

[color=#E56717]========== LOP Check ==========[/color]

[2008/04/14 10:35:21 | 00,000,000 | ---D | M] -- C:\Users\johncl\AppData\Roaming\EPSON
[2008/04/03 11:32:00 | 00,000,000 | ---D | M] -- C:\Users\johncl\AppData\Roaming\Leadertech
[2008/04/09 14:48:51 | 00,000,000 | ---D | M] -- C:\Users\johncl\AppData\Roaming\MSNInstaller
[2008/04/24 07:38:53 | 00,000,000 | ---D | M] -- C:\Users\johncl\AppData\Roaming\Nova Development
[2008/07/17 13:38:13 | 00,000,000 | ---D | M] -- C:\Users\johncl\AppData\Roaming\Skinux
[2008/11/27 09:17:14 | 00,000,000 | ---D | M] -- C:\Users\johncl\AppData\Roaming\Snapfish
[2008/05/12 08:06:46 | 00,000,000 | ---D | M] -- C:\Users\johncl\AppData\Roaming\WildTangent
[2008/07/02 21:41:28 | 00,000,000 | ---D | M] -- C:\Users\johncl\AppData\Roaming\WinBatch
[2009/09/15 18:56:02 | 00,000,402 | ---- | M] () -- C:\Windows\Tasks\EasyShare Registration Task.job
[2009/12/04 19:03:01 | 00,032,532 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009/12/04 19:05:27 | 00,000,420 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{3A6A19C6-40D0-4DFA-A737-77943C2B09F9}.job

[color=#E56717]========== Purity Check ==========[/color]


< End of report >

Report •

#17
December 6, 2009 at 13:14:29
Jabuck,

How does that last log look? Is everything good to go? Thanks
for all your help!


Report •

#18
December 6, 2009 at 13:24:39
I don't see anything that would cause problems, sorry I missed your post. Good job on cleaning the computer.

Report •

#19
December 6, 2009 at 13:30:53
Most awesome! I really appreciated your time and assistance.
You da man!

Report •


Ask Question