API tools faq
paste
Guest User

Untitled

a guest
Apr 14th, 2012
103
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 256.37 KB | None | 0 0
raw download clone embed print report
  1. GMER 1.0.15.15641 - http://www.gmer.net
  2. Rootkit scan 2012-04-13 07:17:57
  3. Windows 5.1.2600 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e IBM-DTLA-305030 rev.TW3OA60A
  4. Running: rmkjh7mv.exe; Driver: C:\DOCUME~1\Vedel\LOKALE~1\Temp\fxldypow.sys
  5.  
  6.  
  7. ---- System - GMER 1.0.15 ----
  8.  
  9. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwAddBootEntry [0xB3AB5DF8]
  10. SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwAllocateVirtualMemory [0xB3B42A5A]
  11. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwAssignProcessToJobObject [0xB3AB685E]
  12. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwClose [0xB3AE2D5D]
  13. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEvent [0xB3ABB2E4]
  14. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEventPair [0xB3ABB330]
  15. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateIoCompletion [0xB3ABB422]
  16. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwCreateKey [0xB0B0CD3A]
  17. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateMutant [0xB3ABB252]
  18. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwCreateProcess [0xB0ADBC0C]
  19. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwCreateProcessEx [0xB0ADBED4]
  20. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateSection [0xB3ABB374]
  21. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateSemaphore [0xB3ABB29A]
  22. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateTimer [0xB3ABB3DC]
  23. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteBootEntry [0xB3AB5E44]
  24. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwDeleteKey [0xB0B0D634]
  25. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwDeleteValueKey [0xB0B0D94C]
  26. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDuplicateObject [0xB3AB89A8]
  27. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xB3AE328E]
  28. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xB3AE30F9]
  29. SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwFreeVirtualMemory [0xB3B42B34]
  30. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwLoadDriver [0xB3AB5AD6]
  31. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwModifyBootEntry [0xB3AB5E90]
  32. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeKey [0xB3AB8D1C]
  33. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeMultipleKeys [0xB3AB6B02]
  34. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEvent [0xB3ABB30E]
  35. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEventPair [0xB3ABB352]
  36. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenIoCompletion [0xB3ABB446]
  37. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwOpenKey [0xB0B0BEBE]
  38. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenMutant [0xB3ABB278]
  39. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenProcess [0xB3AB8518]
  40. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSection [0xB3ABB3AE]
  41. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSemaphore [0xB3ABB2C2]
  42. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenThread [0xB3AB874C]
  43. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenTimer [0xB3ABB400]
  44. SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwProtectVirtualMemory [0xB3B42CA0]
  45. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryKey [0xB3AE2F74]
  46. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryObject [0xB3AB69CE]
  47. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryValueKey [0xB3AE2DC6]
  48. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwRenameKey [0xB0B0DE16]
  49. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwRestoreKey [0xB3AE1D84]
  50. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootEntryOrder [0xB3AB5EDC]
  51. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootOptions [0xB3AB5F28]
  52. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemInformation [0xB3AB5B46]
  53. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemPowerState [0xB3AB5CEA]
  54. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwSetValueKey [0xB0B0D09A]
  55. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwShutdownSystem [0xB3AB5C92]
  56. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSystemDebugControl [0xB3AB5D5A]
  57. SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwTerminateProcess [0xB0ADB80A]
  58. SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwVdmControl [0xB3AB5F74]
  59. SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwWriteVirtualMemory [0xB3B42BE0]
  60.  
  61. Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xB3B58D92]
  62. Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
  63. Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject
  64.  
  65. ---- Kernel code sections - GMER 1.0.15 ----
  66.  
  67. .text ntoskrnl.exe!_abnormal_termination + 40C 804E2A78 5 Bytes [46, 5B, AB, B3, EA] {INC ESI; POP EBX; STOSD ; MOV BL, 0xea}
  68. .text ntoskrnl.exe!_abnormal_termination + 412 804E2A7E 2 Bytes [AB, B3]
  69. .text ntoskrnl.exe!_abnormal_termination + 430 804E2A9C 1 Byte [92]
  70. PAGE ntoskrnl.exe!ObInsertObject 80564423 5 Bytes JMP B3B5774C \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
  71. PAGE ntoskrnl.exe!ZwReplyWaitReceivePortEx + 3CC 80569FBB 4 Bytes CALL B3AB719F \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  72. PAGE ntoskrnl.exe!ZwCreateProcessEx 805820F6 7 Bytes JMP B3B58D96 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
  73. PAGE ntoskrnl.exe!ObMakeTemporaryObject 805A29A4 5 Bytes JMP B3B55C8C \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
  74. ? okfp.sys Den angivne fil blev ikke fundet. !
  75. .text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB6ED0380, 0x8D6CD5, 0xE8000020]
  76. .text win32k.sys!EngFreeUserMem + 674 BF809B45 5 Bytes JMP B3ABA180 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  77. .text win32k.sys!EngFreeUserMem + 35D0 BF80CAA1 5 Bytes JMP B3ABA07C \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  78. .text win32k.sys!EngDeleteSurface + 45 BF80FBC0 5 Bytes JMP B3ABA036 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  79. .text win32k.sys!BRUSHOBJ_pvAllocRbrush + 11F0 BF81C962 5 Bytes JMP B3AB9724 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  80. .text win32k.sys!EngPaint + 4EF BF8255ED 5 Bytes JMP B3AB8F84 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  81. .text win32k.sys!EngUnmapFontFileFD + 1E5F BF8341A1 5 Bytes JMP B3ABA2EA \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  82. .text win32k.sys!EngUnmapFontFileFD + 237D BF8346BF 5 Bytes JMP B3AB9F3C \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  83. .text win32k.sys!EngUnmapFontFileFD + 4564 BF8368A6 5 Bytes JMP B3ABA4F2 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  84. .text win32k.sys!EngUnmapFontFileFD + EE3F BF841181 5 Bytes JMP B3AB8FF4 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  85. .text win32k.sys!FONTOBJ_pxoGetXform + DE42 BF85AD4E 5 Bytes JMP B3AB8E66 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  86. .text win32k.sys!EngMulDiv + B5F2 BF8670A0 5 Bytes JMP B3AB970C \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  87. .text win32k.sys!XLATEOBJ_iXlate + 3474 BF87111B 5 Bytes JMP B3AB9384 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  88. .text win32k.sys!XLATEOBJ_iXlate + 34FF BF8711A6 5 Bytes JMP B3AB9562 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  89. .text win32k.sys!EngStretchBlt + 35C1 BF87593B 5 Bytes JMP B3ABA0BA \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  90. .text win32k.sys!EngGetCurrentCodePage + 411E BF894CB8 5 Bytes JMP B3AB951C \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  91. .text win32k.sys!EngGetLastError + 1606 BF8B1EF6 5 Bytes JMP B3AB97FE \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  92. .text win32k.sys!EngGradientFill + 3AA1 BF8B6854 5 Bytes JMP B3ABA232 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  93. .text win32k.sys!EngStretchBltROP + 33F7 BF8BA1A0 5 Bytes JMP B3AB97E6 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  94. .text win32k.sys!EngStretchBltROP + 34B7 BF8BA260 5 Bytes JMP B3AB8E4E \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  95. .text win32k.sys!EngStretchBltROP + 8A22 BF8BF7CB 5 Bytes JMP B3ABA450 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  96. .text win32k.sys!EngAlphaBlend + 3E8 BF8C333C 5 Bytes JMP B3AB9104 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  97. .text win32k.sys!EngFillPath + 1517 BF8EB97D 5 Bytes JMP B3AB91AC \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  98. .text win32k.sys!EngFillPath + 1797 BF8EBBFD 5 Bytes JMP B3AB92E4 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  99. .text win32k.sys!EngFillPath + B223 BF8F5689 5 Bytes JMP B3AB973C \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  100. .text win32k.sys!PATHOBJ_bCloseFigure + 19EF BF8F9A43 5 Bytes JMP B3AB8D52 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  101. .text win32k.sys!EngCreateClip + 19C1 BF913245 5 Bytes JMP B3AB8F22 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  102. .text win32k.sys!EngCreateClip + 2595 BF913E19 5 Bytes JMP B3AB90B0 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  103. .text win32k.sys!EngCreateClip + 4EF4 BF916778 5 Bytes JMP B3AB967C \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  104. .text win32k.sys!EngPlgBlt + 18EC BF94468A 5 Bytes JMP B3ABA3A8 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software)
  105. ? C:\DOCUME~1\Vedel\LOKALE~1\Temp\pcttProtect32.sys Den angivne fil blev ikke fundet. !
  106.  
  107. ---- User code sections - GMER 1.0.15 ----
  108.  
  109. .text C:\WINDOWS\system32\RunDLL32.exe[200] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  110. .text C:\WINDOWS\system32\RunDLL32.exe[200] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  111. .text C:\WINDOWS\system32\RunDLL32.exe[200] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  112. .text C:\WINDOWS\system32\RunDLL32.exe[200] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 014F0001
  113. .text C:\WINDOWS\system32\RunDLL32.exe[200] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  114. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  115. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [98, 71]
  116. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 719D0F5A
  117. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 71960F5A
  118. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 002F01F8
  119. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 002F03FC
  120. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 002F0804
  121. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 002F0A08
  122. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 002F0600
  123. .text C:\WINDOWS\system32\RunDLL32.exe[200] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71930F5A
  124. .text C:\WINDOWS\system32\RunDLL32.exe[200] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00301014
  125. .text C:\WINDOWS\system32\RunDLL32.exe[200] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00300804
  126. .text C:\WINDOWS\system32\RunDLL32.exe[200] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00300A08
  127. .text C:\WINDOWS\system32\RunDLL32.exe[200] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00300C0C
  128. .text C:\WINDOWS\system32\RunDLL32.exe[200] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00300E10
  129. .text C:\WINDOWS\system32\RunDLL32.exe[200] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003001F8
  130. .text C:\WINDOWS\system32\RunDLL32.exe[200] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003003FC
  131. .text C:\WINDOWS\system32\RunDLL32.exe[200] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00300600
  132. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  133. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  134. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  135. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 00D30001
  136. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  137. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003E1014
  138. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003E0804
  139. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003E0A08
  140. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003E0C0C
  141. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003E0E10
  142. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003E01F8
  143. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003E03FC
  144. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003E0600
  145. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  146. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [A0, 71]
  147. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A50F5A
  148. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719E0F5A
  149. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003F01F8
  150. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003F03FC
  151. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003F0804
  152. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003F0A08
  153. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003F0600
  154. .text C:\Programmer\Fælles filer\Java\Java Update\jusched.exe[220] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 719B0F5A
  155. .text C:\Programmer\AVAST Software\Avast\avastUI.exe[252] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  156. .text C:\Programmer\AVAST Software\Avast\avastUI.exe[252] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  157. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  158. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  159. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  160. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 014B0001
  161. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  162. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  163. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [9D, 71]
  164. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A20F5A
  165. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719B0F5A
  166. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003D01F8
  167. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003D03FC
  168. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003D0804
  169. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003D0A08
  170. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003D0600
  171. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71980F5A
  172. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003E1014
  173. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003E0804
  174. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003E0A08
  175. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003E0C0C
  176. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003E0E10
  177. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003E01F8
  178. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003E03FC
  179. .text C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe[260] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003E0600
  180. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000501F8
  181. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  182. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000503FC
  183. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 03010001
  184. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  185. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  186. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  187. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  188. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  189. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  190. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  191. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  192. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  193. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  194. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [9D, 71]
  195. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A20F5A
  196. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719B0F5A
  197. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  198. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  199. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  200. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  201. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  202. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe[272] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71980F5A
  203. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  204. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  205. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  206. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 00CC0001
  207. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  208. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  209. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [9B, 71]
  210. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A00F5A
  211. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 71990F5A
  212. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003E01F8
  213. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003E03FC
  214. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003E0804
  215. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003E0A08
  216. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003E0600
  217. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71960F5A
  218. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003F1014
  219. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003F0804
  220. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003F0A08
  221. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003F0C0C
  222. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003F0E10
  223. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003F01F8
  224. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003F03FC
  225. .text C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe[288] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003F0600
  226. .text C:\WINDOWS\system32\ctfmon.exe[456] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000A01F8
  227. .text C:\WINDOWS\system32\ctfmon.exe[456] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  228. .text C:\WINDOWS\system32\ctfmon.exe[456] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000A03FC
  229. .text C:\WINDOWS\system32\ctfmon.exe[456] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 00CD0001
  230. .text C:\WINDOWS\system32\ctfmon.exe[456] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  231. .text C:\WINDOWS\system32\ctfmon.exe[456] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00371014
  232. .text C:\WINDOWS\system32\ctfmon.exe[456] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00370804
  233. .text C:\WINDOWS\system32\ctfmon.exe[456] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00370A08
  234. .text C:\WINDOWS\system32\ctfmon.exe[456] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00370C0C
  235. .text C:\WINDOWS\system32\ctfmon.exe[456] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00370E10
  236. .text C:\WINDOWS\system32\ctfmon.exe[456] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003701F8
  237. .text C:\WINDOWS\system32\ctfmon.exe[456] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003703FC
  238. .text C:\WINDOWS\system32\ctfmon.exe[456] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00370600
  239. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  240. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [A0, 71]
  241. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A50F5A
  242. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719E0F5A
  243. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003801F8
  244. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003803FC
  245. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00380804
  246. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00380A08
  247. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00380600
  248. .text C:\WINDOWS\system32\ctfmon.exe[456] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 719B0F5A
  249. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  250. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  251. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  252. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 01230001
  253. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  254. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  255. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [9B, 71]
  256. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A00F5A
  257. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 71990F5A
  258. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 004701F8
  259. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 004703FC
  260. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00470804
  261. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00470A08
  262. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00470600
  263. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71960F5A
  264. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00481014
  265. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00480804
  266. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00480A08
  267. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00480C0C
  268. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00480E10
  269. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 004801F8
  270. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 004803FC
  271. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe[468] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00480600
  272. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001401F8
  273. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  274. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001403FC
  275. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] kernel32.dll!CreateThread + 1A 7C810661 4 Bytes CALL 0044C4B9 C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe (PC Tools Security Component/PC Tools)
  276. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  277. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003F01F8
  278. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003F03FC
  279. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003F0804
  280. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003F0A08
  281. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003F0600
  282. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00A31014
  283. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00A30804
  284. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00A30A08
  285. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00A30C0C
  286. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00A30E10
  287. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 00A301F8
  288. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 00A303FC
  289. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!DeleteService 77E27359 3 Bytes JMP 00A30600
  290. .text C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe[488] ADVAPI32.dll!DeleteService + 4 77E2735D 1 Byte [88]
  291. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001401F8
  292. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  293. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001403FC
  294. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 011E0001
  295. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  296. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003C1014
  297. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003C0804
  298. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003C0A08
  299. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003C0C0C
  300. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003C0E10
  301. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003C01F8
  302. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003C03FC
  303. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003C0600
  304. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  305. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [9D, 71]
  306. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A20F5A
  307. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719B0F5A
  308. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003D01F8
  309. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003D03FC
  310. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003D0804
  311. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003D0A08
  312. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003D0600
  313. .text C:\Programmer\EDIMAX\Common\RaUI.exe[540] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71980F5A
  314. .text C:\WINDOWS\system32\svchost.exe[596] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  315. .text C:\WINDOWS\system32\svchost.exe[596] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  316. .text C:\WINDOWS\system32\svchost.exe[596] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  317. .text C:\WINDOWS\system32\svchost.exe[596] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  318. .text C:\WINDOWS\system32\svchost.exe[596] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  319. .text C:\WINDOWS\system32\svchost.exe[596] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  320. .text C:\WINDOWS\system32\svchost.exe[596] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  321. .text C:\WINDOWS\system32\svchost.exe[596] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  322. .text C:\WINDOWS\system32\svchost.exe[596] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  323. .text C:\WINDOWS\system32\svchost.exe[596] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  324. .text C:\WINDOWS\system32\svchost.exe[596] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  325. .text C:\WINDOWS\system32\svchost.exe[596] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  326. .text C:\WINDOWS\system32\svchost.exe[596] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  327. .text C:\WINDOWS\system32\svchost.exe[596] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  328. .text C:\WINDOWS\system32\svchost.exe[596] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  329. .text C:\WINDOWS\system32\svchost.exe[596] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  330. .text C:\WINDOWS\system32\svchost.exe[596] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  331. .text C:\WINDOWS\System32\alg.exe[676] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  332. .text C:\WINDOWS\System32\alg.exe[676] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  333. .text C:\WINDOWS\System32\alg.exe[676] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  334. .text C:\WINDOWS\System32\alg.exe[676] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  335. .text C:\WINDOWS\System32\alg.exe[676] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 002F01F8
  336. .text C:\WINDOWS\System32\alg.exe[676] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 002F03FC
  337. .text C:\WINDOWS\System32\alg.exe[676] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 002F0804
  338. .text C:\WINDOWS\System32\alg.exe[676] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 002F0A08
  339. .text C:\WINDOWS\System32\alg.exe[676] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 002F0600
  340. .text C:\WINDOWS\System32\alg.exe[676] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00301014
  341. .text C:\WINDOWS\System32\alg.exe[676] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00300804
  342. .text C:\WINDOWS\System32\alg.exe[676] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00300A08
  343. .text C:\WINDOWS\System32\alg.exe[676] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00300C0C
  344. .text C:\WINDOWS\System32\alg.exe[676] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00300E10
  345. .text C:\WINDOWS\System32\alg.exe[676] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003001F8
  346. .text C:\WINDOWS\System32\alg.exe[676] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003003FC
  347. .text C:\WINDOWS\System32\alg.exe[676] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00300600
  348. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  349. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  350. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  351. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  352. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003E1014
  353. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003E0804
  354. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003E0A08
  355. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003E0C0C
  356. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003E0E10
  357. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003E01F8
  358. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003E03FC
  359. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003E0600
  360. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003F01F8
  361. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003F03FC
  362. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003F0804
  363. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003F0A08
  364. .text C:\Programmer\LogMeIn Hamachi\hamachi-2.exe[684] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003F0600
  365. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  366. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  367. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  368. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  369. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  370. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  371. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  372. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  373. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  374. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  375. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  376. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  377. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  378. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  379. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  380. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  381. .text C:\WINDOWS\system32\wbem\wmiprvse.exe[720] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  382. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  383. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  384. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  385. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  386. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  387. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  388. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  389. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  390. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  391. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  392. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  393. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  394. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003E01F8
  395. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003E03FC
  396. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003E0804
  397. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003E0A08
  398. .text C:\Programmer\Java\jre6\bin\jqs.exe[724] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003E0600
  399. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000501F8
  400. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  401. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000503FC
  402. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  403. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 01071014
  404. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 01070804
  405. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 01070A08
  406. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 01070C0C
  407. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 01070E10
  408. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 010701F8
  409. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 010703FC
  410. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 01070600
  411. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 010801F8
  412. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 010803FC
  413. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 01080804
  414. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 01080A08
  415. .text C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe[756] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 01080600
  416. .text C:\WINDOWS\System32\smss.exe[808] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  417. .text C:\WINDOWS\system32\csrss.exe[860] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  418. .text C:\WINDOWS\system32\csrss.exe[860] KERNEL32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  419. .text C:\WINDOWS\system32\nvsvc32.exe[864] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  420. .text C:\WINDOWS\system32\nvsvc32.exe[864] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  421. .text C:\WINDOWS\system32\nvsvc32.exe[864] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  422. .text C:\WINDOWS\system32\nvsvc32.exe[864] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  423. .text C:\WINDOWS\system32\nvsvc32.exe[864] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  424. .text C:\WINDOWS\system32\nvsvc32.exe[864] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  425. .text C:\WINDOWS\system32\nvsvc32.exe[864] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  426. .text C:\WINDOWS\system32\nvsvc32.exe[864] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  427. .text C:\WINDOWS\system32\nvsvc32.exe[864] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  428. .text C:\WINDOWS\system32\nvsvc32.exe[864] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  429. .text C:\WINDOWS\system32\nvsvc32.exe[864] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  430. .text C:\WINDOWS\system32\nvsvc32.exe[864] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  431. .text C:\WINDOWS\system32\nvsvc32.exe[864] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003E01F8
  432. .text C:\WINDOWS\system32\nvsvc32.exe[864] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003E03FC
  433. .text C:\WINDOWS\system32\nvsvc32.exe[864] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003E0804
  434. .text C:\WINDOWS\system32\nvsvc32.exe[864] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003E0A08
  435. .text C:\WINDOWS\system32\nvsvc32.exe[864] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003E0600
  436. .text C:\WINDOWS\system32\winlogon.exe[884] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000701F8
  437. .text C:\WINDOWS\system32\winlogon.exe[884] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  438. .text C:\WINDOWS\system32\winlogon.exe[884] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000703FC
  439. .text C:\WINDOWS\system32\winlogon.exe[884] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  440. .text C:\WINDOWS\system32\winlogon.exe[884] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  441. .text C:\WINDOWS\system32\winlogon.exe[884] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  442. .text C:\WINDOWS\system32\winlogon.exe[884] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  443. .text C:\WINDOWS\system32\winlogon.exe[884] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  444. .text C:\WINDOWS\system32\winlogon.exe[884] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  445. .text C:\WINDOWS\system32\winlogon.exe[884] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  446. .text C:\WINDOWS\system32\winlogon.exe[884] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  447. .text C:\WINDOWS\system32\winlogon.exe[884] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  448. .text C:\WINDOWS\system32\winlogon.exe[884] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  449. .text C:\WINDOWS\system32\winlogon.exe[884] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  450. .text C:\WINDOWS\system32\winlogon.exe[884] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  451. .text C:\WINDOWS\system32\winlogon.exe[884] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  452. .text C:\WINDOWS\system32\winlogon.exe[884] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  453. .text C:\WINDOWS\system32\services.exe[928] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  454. .text C:\WINDOWS\system32\services.exe[928] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  455. .text C:\WINDOWS\system32\services.exe[928] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  456. .text C:\WINDOWS\system32\services.exe[928] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  457. .text C:\WINDOWS\system32\services.exe[928] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  458. .text C:\WINDOWS\system32\services.exe[928] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  459. .text C:\WINDOWS\system32\services.exe[928] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  460. .text C:\WINDOWS\system32\services.exe[928] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  461. .text C:\WINDOWS\system32\services.exe[928] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  462. .text C:\WINDOWS\system32\services.exe[928] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  463. .text C:\WINDOWS\system32\services.exe[928] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  464. .text C:\WINDOWS\system32\services.exe[928] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  465. .text C:\WINDOWS\system32\services.exe[928] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  466. .text C:\WINDOWS\system32\services.exe[928] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  467. .text C:\WINDOWS\system32\services.exe[928] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  468. .text C:\WINDOWS\system32\services.exe[928] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  469. .text C:\WINDOWS\system32\services.exe[928] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  470. .text C:\WINDOWS\system32\lsass.exe[940] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  471. .text C:\WINDOWS\system32\lsass.exe[940] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  472. .text C:\WINDOWS\system32\lsass.exe[940] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  473. .text C:\WINDOWS\system32\lsass.exe[940] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  474. .text C:\WINDOWS\system32\lsass.exe[940] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  475. .text C:\WINDOWS\system32\lsass.exe[940] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  476. .text C:\WINDOWS\system32\lsass.exe[940] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  477. .text C:\WINDOWS\system32\lsass.exe[940] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  478. .text C:\WINDOWS\system32\lsass.exe[940] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  479. .text C:\WINDOWS\system32\lsass.exe[940] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  480. .text C:\WINDOWS\system32\lsass.exe[940] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  481. .text C:\WINDOWS\system32\lsass.exe[940] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  482. .text C:\WINDOWS\system32\lsass.exe[940] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  483. .text C:\WINDOWS\system32\lsass.exe[940] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  484. .text C:\WINDOWS\system32\lsass.exe[940] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  485. .text C:\WINDOWS\system32\lsass.exe[940] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  486. .text C:\WINDOWS\system32\lsass.exe[940] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  487. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 16, 00]
  488. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
  489. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
  490. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 16, 00]
  491. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
  492. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 16, 00]
  493. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
  494. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 16, 00]
  495. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
  496. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90EC1A
  497. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
  498. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 16, 00]
  499. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
  500. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 16, 00]
  501. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
  502. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 16, 00]
  503. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
  504. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90EC8B
  505. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
  506. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 16, 00]
  507. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
  508. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90EDB9
  509. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
  510. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 16, 00]
  511. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
  512. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 16, 00]
  513. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
  514. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
  515. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 16, 00]
  516. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
  517. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001801F8
  518. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  519. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001803FC
  520. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  521. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00591014
  522. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00590804
  523. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00590A08
  524. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00590C0C
  525. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00590E10
  526. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 005901F8
  527. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 005903FC
  528. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00590600
  529. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 005A01F8
  530. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 005A03FC
  531. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 005A0804
  532. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 005A0A08
  533. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1040] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 005A0600
  534. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  535. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  536. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  537. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 00F90001
  538. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  539. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  540. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  541. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  542. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  543. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  544. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  545. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  546. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  547. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  548. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [A0, 71]
  549. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A50F5A
  550. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719E0F5A
  551. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003E01F8
  552. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003E03FC
  553. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003E0804
  554. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003E0A08
  555. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003E0600
  556. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe[1076] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 719B0F5A
  557. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  558. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  559. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  560. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 00D40001
  561. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  562. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  563. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [A8, 71] {TEST AL, 0x71}
  564. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71AF0F5A
  565. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 71A60F5A
  566. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 011D01F8
  567. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 011D03FC
  568. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 011D0804
  569. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 011D0A08
  570. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 011D0600
  571. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71A30F5A
  572. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 010A1014
  573. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 010A0804
  574. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 010A0A08
  575. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 010A0C0C
  576. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 010A0E10
  577. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 010A01F8
  578. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 010A03FC
  579. .text C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe[1096] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 010A0600
  580. .text C:\WINDOWS\system32\svchost.exe[1116] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  581. .text C:\WINDOWS\system32\svchost.exe[1116] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  582. .text C:\WINDOWS\system32\svchost.exe[1116] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  583. .text C:\WINDOWS\system32\svchost.exe[1116] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  584. .text C:\WINDOWS\system32\svchost.exe[1116] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  585. .text C:\WINDOWS\system32\svchost.exe[1116] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  586. .text C:\WINDOWS\system32\svchost.exe[1116] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  587. .text C:\WINDOWS\system32\svchost.exe[1116] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  588. .text C:\WINDOWS\system32\svchost.exe[1116] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  589. .text C:\WINDOWS\system32\svchost.exe[1116] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  590. .text C:\WINDOWS\system32\svchost.exe[1116] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  591. .text C:\WINDOWS\system32\svchost.exe[1116] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  592. .text C:\WINDOWS\system32\svchost.exe[1116] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  593. .text C:\WINDOWS\system32\svchost.exe[1116] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  594. .text C:\WINDOWS\system32\svchost.exe[1116] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  595. .text C:\WINDOWS\system32\svchost.exe[1116] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  596. .text C:\WINDOWS\system32\svchost.exe[1116] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  597. .text C:\WINDOWS\system32\svchost.exe[1180] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  598. .text C:\WINDOWS\system32\svchost.exe[1180] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  599. .text C:\WINDOWS\system32\svchost.exe[1180] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  600. .text C:\WINDOWS\system32\svchost.exe[1180] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  601. .text C:\WINDOWS\system32\svchost.exe[1180] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  602. .text C:\WINDOWS\system32\svchost.exe[1180] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  603. .text C:\WINDOWS\system32\svchost.exe[1180] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  604. .text C:\WINDOWS\system32\svchost.exe[1180] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  605. .text C:\WINDOWS\system32\svchost.exe[1180] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  606. .text C:\WINDOWS\system32\svchost.exe[1180] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  607. .text C:\WINDOWS\system32\svchost.exe[1180] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  608. .text C:\WINDOWS\system32\svchost.exe[1180] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  609. .text C:\WINDOWS\system32\svchost.exe[1180] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  610. .text C:\WINDOWS\system32\svchost.exe[1180] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  611. .text C:\WINDOWS\system32\svchost.exe[1180] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  612. .text C:\WINDOWS\system32\svchost.exe[1180] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  613. .text C:\WINDOWS\system32\svchost.exe[1180] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  614. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  615. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  616. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  617. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  618. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003D01F8
  619. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003D03FC
  620. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003D0804
  621. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003D0A08
  622. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003D0600
  623. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003E1014
  624. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003E0804
  625. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003E0A08
  626. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003E0C0C
  627. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003E0E10
  628. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003E01F8
  629. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003E03FC
  630. .text C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe[1228] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003E0600
  631. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  632. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  633. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  634. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 088C0001
  635. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  636. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  637. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  638. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  639. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  640. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  641. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  642. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  643. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  644. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  645. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [98, 71]
  646. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 719D0F5A
  647. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 71960F5A
  648. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003E01F8
  649. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003E03FC
  650. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003E0804
  651. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003E0A08
  652. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003E0600
  653. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1284] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71930F5A
  654. .text C:\WINDOWS\System32\svchost.exe[1324] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  655. .text C:\WINDOWS\System32\svchost.exe[1324] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  656. .text C:\WINDOWS\System32\svchost.exe[1324] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  657. .text C:\WINDOWS\System32\svchost.exe[1324] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  658. .text C:\WINDOWS\System32\svchost.exe[1324] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  659. .text C:\WINDOWS\System32\svchost.exe[1324] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  660. .text C:\WINDOWS\System32\svchost.exe[1324] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  661. .text C:\WINDOWS\System32\svchost.exe[1324] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  662. .text C:\WINDOWS\System32\svchost.exe[1324] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  663. .text C:\WINDOWS\System32\svchost.exe[1324] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  664. .text C:\WINDOWS\System32\svchost.exe[1324] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  665. .text C:\WINDOWS\System32\svchost.exe[1324] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  666. .text C:\WINDOWS\System32\svchost.exe[1324] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  667. .text C:\WINDOWS\System32\svchost.exe[1324] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  668. .text C:\WINDOWS\System32\svchost.exe[1324] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  669. .text C:\WINDOWS\System32\svchost.exe[1324] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  670. .text C:\WINDOWS\System32\svchost.exe[1324] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  671. .text C:\WINDOWS\system32\svchost.exe[1356] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  672. .text C:\WINDOWS\system32\svchost.exe[1356] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  673. .text C:\WINDOWS\system32\svchost.exe[1356] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  674. .text C:\WINDOWS\system32\svchost.exe[1356] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  675. .text C:\WINDOWS\system32\svchost.exe[1356] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  676. .text C:\WINDOWS\system32\svchost.exe[1356] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  677. .text C:\WINDOWS\system32\svchost.exe[1356] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  678. .text C:\WINDOWS\system32\svchost.exe[1356] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  679. .text C:\WINDOWS\system32\svchost.exe[1356] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  680. .text C:\WINDOWS\system32\svchost.exe[1356] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  681. .text C:\WINDOWS\system32\svchost.exe[1356] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  682. .text C:\WINDOWS\system32\svchost.exe[1356] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  683. .text C:\WINDOWS\system32\svchost.exe[1356] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  684. .text C:\WINDOWS\system32\svchost.exe[1356] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  685. .text C:\WINDOWS\system32\svchost.exe[1356] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  686. .text C:\WINDOWS\system32\svchost.exe[1356] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  687. .text C:\WINDOWS\system32\svchost.exe[1356] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  688. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  689. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  690. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  691. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 01280001
  692. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  693. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  694. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  695. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  696. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  697. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  698. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  699. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  700. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  701. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  702. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [9F, 71]
  703. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71AE0F5A
  704. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719D0F5A
  705. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003E01F8
  706. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003E03FC
  707. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003E0804
  708. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003E0A08
  709. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003E0600
  710. .text C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1392] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 719A0F5A
  711. .text C:\WINDOWS\system32\svchost.exe[1492] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  712. .text C:\WINDOWS\system32\svchost.exe[1492] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  713. .text C:\WINDOWS\system32\svchost.exe[1492] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  714. .text C:\WINDOWS\system32\svchost.exe[1492] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  715. .text C:\WINDOWS\system32\svchost.exe[1492] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  716. .text C:\WINDOWS\system32\svchost.exe[1492] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  717. .text C:\WINDOWS\system32\svchost.exe[1492] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  718. .text C:\WINDOWS\system32\svchost.exe[1492] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  719. .text C:\WINDOWS\system32\svchost.exe[1492] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  720. .text C:\WINDOWS\system32\svchost.exe[1492] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  721. .text C:\WINDOWS\system32\svchost.exe[1492] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  722. .text C:\WINDOWS\system32\svchost.exe[1492] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  723. .text C:\WINDOWS\system32\svchost.exe[1492] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  724. .text C:\WINDOWS\system32\svchost.exe[1492] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  725. .text C:\WINDOWS\system32\svchost.exe[1492] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  726. .text C:\WINDOWS\system32\svchost.exe[1492] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  727. .text C:\WINDOWS\system32\svchost.exe[1492] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  728. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  729. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  730. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  731. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] kernel32.dll!CreateThread + 1A 7C810661 4 Bytes CALL 0044CD69 C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe (PC Tools Security Component/PC Tools)
  732. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  733. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 00DB01F8
  734. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 00DB03FC
  735. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00DB0804
  736. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00DB0A08
  737. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00DB0600
  738. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00DC1014
  739. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00DC0804
  740. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00DC0A08
  741. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00DC0C0C
  742. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00DC0E10
  743. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 00DC01F8
  744. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 00DC03FC
  745. .text C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe[1512] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00DC0600
  746. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001401F8
  747. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  748. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001403FC
  749. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  750. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003C01F8
  751. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003C03FC
  752. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003C0804
  753. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003C0A08
  754. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003C0600
  755. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  756. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  757. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  758. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  759. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  760. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  761. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  762. .text C:\WINDOWS\system32\PnkBstrA.exe[1552] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  763. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  764. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  765. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  766. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  767. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003D01F8
  768. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003D03FC
  769. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003D0804
  770. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003D0A08
  771. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003D0600
  772. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003E1014
  773. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003E0804
  774. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003E0A08
  775. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003E0C0C
  776. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003E0E10
  777. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003E01F8
  778. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003E03FC
  779. .text C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe[1556] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003E0600
  780. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 16, 00]
  781. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
  782. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
  783. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 16, 00]
  784. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
  785. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 16, 00]
  786. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
  787. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 16, 00]
  788. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
  789. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90EC1A
  790. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
  791. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 16, 00]
  792. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
  793. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 16, 00]
  794. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
  795. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 16, 00]
  796. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
  797. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90EC8B
  798. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
  799. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 16, 00]
  800. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
  801. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90EDB9
  802. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
  803. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 16, 00]
  804. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
  805. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 16, 00]
  806. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
  807. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
  808. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 16, 00]
  809. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
  810. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001801F8
  811. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  812. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001803FC
  813. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  814. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00591014
  815. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00590804
  816. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00590A08
  817. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00590C0C
  818. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00590E10
  819. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 005901F8
  820. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 005903FC
  821. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00590600
  822. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 005A01F8
  823. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 005A03FC
  824. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 005A0804
  825. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 005A0A08
  826. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[1572] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 005A0600
  827. .text C:\Programmer\AVAST Software\Avast\AvastSvc.exe[1700] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  828. .text C:\Programmer\AVAST Software\Avast\AvastSvc.exe[1700] kernel32.dll!SetUnhandledExceptionFilter 7C8447ED 4 Bytes [C2, 04, 00, 90] {RET 0x4; NOP }
  829. .text C:\Programmer\AVAST Software\Avast\AvastSvc.exe[1700] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  830. .text C:\WINDOWS\Explorer.EXE[1712] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  831. .text C:\WINDOWS\Explorer.EXE[1712] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  832. .text C:\WINDOWS\Explorer.EXE[1712] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  833. .text C:\WINDOWS\Explorer.EXE[1712] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 00FA0001
  834. .text C:\WINDOWS\Explorer.EXE[1712] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  835. .text C:\WINDOWS\Explorer.EXE[1712] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00371014
  836. .text C:\WINDOWS\Explorer.EXE[1712] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00370804
  837. .text C:\WINDOWS\Explorer.EXE[1712] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00370A08
  838. .text C:\WINDOWS\Explorer.EXE[1712] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00370C0C
  839. .text C:\WINDOWS\Explorer.EXE[1712] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00370E10
  840. .text C:\WINDOWS\Explorer.EXE[1712] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003701F8
  841. .text C:\WINDOWS\Explorer.EXE[1712] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003703FC
  842. .text C:\WINDOWS\Explorer.EXE[1712] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00370600
  843. .text C:\WINDOWS\Explorer.EXE[1712] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003801F8
  844. .text C:\WINDOWS\Explorer.EXE[1712] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003803FC
  845. .text C:\WINDOWS\Explorer.EXE[1712] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00380804
  846. .text C:\WINDOWS\Explorer.EXE[1712] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00380A08
  847. .text C:\WINDOWS\Explorer.EXE[1712] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00380600
  848. .text C:\WINDOWS\system32\spoolsv.exe[1788] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  849. .text C:\WINDOWS\system32\spoolsv.exe[1788] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  850. .text C:\WINDOWS\system32\spoolsv.exe[1788] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  851. .text C:\WINDOWS\system32\spoolsv.exe[1788] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  852. .text C:\WINDOWS\system32\spoolsv.exe[1788] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  853. .text C:\WINDOWS\system32\spoolsv.exe[1788] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  854. .text C:\WINDOWS\system32\spoolsv.exe[1788] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  855. .text C:\WINDOWS\system32\spoolsv.exe[1788] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  856. .text C:\WINDOWS\system32\spoolsv.exe[1788] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  857. .text C:\WINDOWS\system32\spoolsv.exe[1788] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  858. .text C:\WINDOWS\system32\spoolsv.exe[1788] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  859. .text C:\WINDOWS\system32\spoolsv.exe[1788] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  860. .text C:\WINDOWS\system32\spoolsv.exe[1788] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  861. .text C:\WINDOWS\system32\spoolsv.exe[1788] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  862. .text C:\WINDOWS\system32\spoolsv.exe[1788] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  863. .text C:\WINDOWS\system32\spoolsv.exe[1788] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  864. .text C:\WINDOWS\system32\spoolsv.exe[1788] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  865. .text C:\WINDOWS\RTHDCPL.EXE[1988] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001401F8
  866. .text C:\WINDOWS\RTHDCPL.EXE[1988] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  867. .text C:\WINDOWS\RTHDCPL.EXE[1988] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001403FC
  868. .text C:\WINDOWS\RTHDCPL.EXE[1988] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 052E0001
  869. .text C:\WINDOWS\RTHDCPL.EXE[1988] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  870. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  871. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [9F, 71]
  872. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A40F5A
  873. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719D0F5A
  874. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003C01F8
  875. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003C03FC
  876. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003C0804
  877. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003C0A08
  878. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003C0600
  879. .text C:\WINDOWS\RTHDCPL.EXE[1988] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 719A0F5A
  880. .text C:\WINDOWS\RTHDCPL.EXE[1988] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  881. .text C:\WINDOWS\RTHDCPL.EXE[1988] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  882. .text C:\WINDOWS\RTHDCPL.EXE[1988] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  883. .text C:\WINDOWS\RTHDCPL.EXE[1988] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  884. .text C:\WINDOWS\RTHDCPL.EXE[1988] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  885. .text C:\WINDOWS\RTHDCPL.EXE[1988] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  886. .text C:\WINDOWS\RTHDCPL.EXE[1988] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  887. .text C:\WINDOWS\RTHDCPL.EXE[1988] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  888. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  889. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  890. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  891. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 01A30001
  892. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  893. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  894. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [99, 71]
  895. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 719E0F5A
  896. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 71970F5A
  897. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003E01F8
  898. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003E03FC
  899. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003E0804
  900. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003E0A08
  901. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003E0600
  902. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71940F5A
  903. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003F1014
  904. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003F0804
  905. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003F0A08
  906. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003F0C0C
  907. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003F0E10
  908. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003F01F8
  909. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003F03FC
  910. .text C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe[1996] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003F0600
  911. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001401F8
  912. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  913. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001403FC
  914. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  915. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003C01F8
  916. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003C03FC
  917. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003C0804
  918. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003C0A08
  919. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003C0600
  920. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  921. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  922. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  923. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  924. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  925. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  926. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  927. .text C:\WINDOWS\system32\PnkBstrB.exe[2544] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  928. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 1B, 00] {SUB [EAX], AL; SBB EAX, [EAX]}
  929. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
  930. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
  931. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 1B, 00] {SUB [EBX], AL; SBB EAX, [EAX]}
  932. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
  933. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 1B, 00]
  934. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
  935. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 1B, 00] {TEST AL, 0x1; SBB EAX, [EAX]}
  936. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
  937. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90F11A
  938. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
  939. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 1B, 00] {TEST AL, 0x2; SBB EAX, [EAX]}
  940. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
  941. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 1B, 00]
  942. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
  943. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 1B, 00]
  944. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
  945. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90F18B
  946. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
  947. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 1B, 00] {TEST AL, 0x0; SBB EAX, [EAX]}
  948. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
  949. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90F2B9
  950. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
  951. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 1B, 00] {SUB [ECX], AL; SBB EAX, [EAX]}
  952. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
  953. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 1B, 00] {SUB [EDX], AL; SBB EAX, [EAX]}
  954. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
  955. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
  956. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 1B, 00]
  957. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
  958. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001D01F8
  959. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  960. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001D03FC
  961. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  962. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 005E1014
  963. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 005E0804
  964. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 005E0A08
  965. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 005E0C0C
  966. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 005E0E10
  967. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 005E01F8
  968. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 005E03FC
  969. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 005E0600
  970. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 005F01F8
  971. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 005F03FC
  972. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 005F0804
  973. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 005F0A08
  974. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[2844] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 005F0600
  975. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 3C, 00] {SUB [EAX], AL; CMP AL, 0x0}
  976. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
  977. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
  978. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 3C, 00] {SUB [EBX], AL; CMP AL, 0x0}
  979. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
  980. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 3C, 00]
  981. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
  982. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 3C, 00] {TEST AL, 0x1; CMP AL, 0x0}
  983. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
  984. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B91121A
  985. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
  986. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 3C, 00] {TEST AL, 0x2; CMP AL, 0x0}
  987. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
  988. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 3C, 00]
  989. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
  990. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 3C, 00]
  991. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
  992. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B91128B
  993. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
  994. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 3C, 00] {TEST AL, 0x0; CMP AL, 0x0}
  995. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
  996. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B9113B9
  997. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
  998. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 3C, 00] {SUB [ECX], AL; CMP AL, 0x0}
  999. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
  1000. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 3C, 00] {SUB [EDX], AL; CMP AL, 0x0}
  1001. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
  1002. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
  1003. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 3C, 00]
  1004. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
  1005. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 003E01F8
  1006. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1007. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 003E03FC
  1008. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1009. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 007F1014
  1010. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 007F0804
  1011. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 007F0A08
  1012. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 007F0C0C
  1013. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 007F0E10
  1014. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 007F01F8
  1015. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 007F03FC
  1016. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 007F0600
  1017. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 008001F8
  1018. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 008003FC
  1019. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00800804
  1020. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00800A08
  1021. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3012] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00800600
  1022. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  1023. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1024. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  1025. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1026. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003E1014
  1027. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003E0804
  1028. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003E0A08
  1029. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003E0C0C
  1030. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003E0E10
  1031. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003E01F8
  1032. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003E03FC
  1033. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003E0600
  1034. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003F01F8
  1035. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003F03FC
  1036. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003F0804
  1037. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003F0A08
  1038. .text C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe[3088] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003F0600
  1039. .text C:\WINDOWS\notepad.exe[3192] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000A01F8
  1040. .text C:\WINDOWS\notepad.exe[3192] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1041. .text C:\WINDOWS\notepad.exe[3192] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000A03FC
  1042. .text C:\WINDOWS\notepad.exe[3192] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 00B60001
  1043. .text C:\WINDOWS\notepad.exe[3192] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1044. .text C:\WINDOWS\notepad.exe[3192] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00301014
  1045. .text C:\WINDOWS\notepad.exe[3192] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00300804
  1046. .text C:\WINDOWS\notepad.exe[3192] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00300A08
  1047. .text C:\WINDOWS\notepad.exe[3192] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00300C0C
  1048. .text C:\WINDOWS\notepad.exe[3192] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00300E10
  1049. .text C:\WINDOWS\notepad.exe[3192] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003001F8
  1050. .text C:\WINDOWS\notepad.exe[3192] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003003FC
  1051. .text C:\WINDOWS\notepad.exe[3192] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00300600
  1052. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  1053. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [A8, 71] {TEST AL, 0x71}
  1054. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71AF0F5A
  1055. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 71A60F5A
  1056. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003101F8
  1057. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003103FC
  1058. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00310804
  1059. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00310A08
  1060. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00310600
  1061. .text C:\WINDOWS\notepad.exe[3192] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71A30F5A
  1062. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  1063. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1064. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  1065. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 077A0001
  1066. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1067. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 003D1014
  1068. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 003D0804
  1069. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 003D0A08
  1070. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 003D0C0C
  1071. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 003D0E10
  1072. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 003D01F8
  1073. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 003D03FC
  1074. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 003D0600
  1075. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  1076. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [9D, 71]
  1077. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71A20F5A
  1078. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 719B0F5A
  1079. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003E01F8
  1080. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003E03FC
  1081. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 003E0804
  1082. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 003E0A08
  1083. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 003E0600
  1084. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3356] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71980F5A
  1085. .text C:\WINDOWS\system32\svchost.exe[3456] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  1086. .text C:\WINDOWS\system32\svchost.exe[3456] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1087. .text C:\WINDOWS\system32\svchost.exe[3456] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  1088. .text C:\WINDOWS\system32\svchost.exe[3456] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1089. .text C:\WINDOWS\system32\svchost.exe[3456] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  1090. .text C:\WINDOWS\system32\svchost.exe[3456] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  1091. .text C:\WINDOWS\system32\svchost.exe[3456] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  1092. .text C:\WINDOWS\system32\svchost.exe[3456] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  1093. .text C:\WINDOWS\system32\svchost.exe[3456] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  1094. .text C:\WINDOWS\system32\svchost.exe[3456] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  1095. .text C:\WINDOWS\system32\svchost.exe[3456] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  1096. .text C:\WINDOWS\system32\svchost.exe[3456] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  1097. .text C:\WINDOWS\system32\svchost.exe[3456] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  1098. .text C:\WINDOWS\system32\svchost.exe[3456] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  1099. .text C:\WINDOWS\system32\svchost.exe[3456] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  1100. .text C:\WINDOWS\system32\svchost.exe[3456] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  1101. .text C:\WINDOWS\system32\svchost.exe[3456] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  1102. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 16, 00]
  1103. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
  1104. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
  1105. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 16, 00]
  1106. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
  1107. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 16, 00]
  1108. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
  1109. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 16, 00]
  1110. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
  1111. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B90EC1A
  1112. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
  1113. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 16, 00]
  1114. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
  1115. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 16, 00]
  1116. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
  1117. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 16, 00]
  1118. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
  1119. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B90EC8B
  1120. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
  1121. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 16, 00]
  1122. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
  1123. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B90EDB9
  1124. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
  1125. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 16, 00]
  1126. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
  1127. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 16, 00]
  1128. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
  1129. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
  1130. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 16, 00]
  1131. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
  1132. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001801F8
  1133. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1134. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001803FC
  1135. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1136. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00591014
  1137. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00590804
  1138. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00590A08
  1139. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00590C0C
  1140. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00590E10
  1141. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 005901F8
  1142. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 005903FC
  1143. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00590600
  1144. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 005A01F8
  1145. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 005A03FC
  1146. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 005A0804
  1147. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 005A0A08
  1148. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3520] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 005A0600
  1149. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 000901F8
  1150. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1151. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 000903FC
  1152. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1153. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 002F1014
  1154. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 002F0804
  1155. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 002F0A08
  1156. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 002F0C0C
  1157. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 002F0E10
  1158. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 002F01F8
  1159. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 002F03FC
  1160. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 002F0600
  1161. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 003001F8
  1162. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 003003FC
  1163. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00300804
  1164. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00300A08
  1165. .text C:\WINDOWS\system32\wbem\wmiapsrv.exe[3540] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00300600
  1166. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 001501F8
  1167. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1168. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 001503FC
  1169. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] kernel32.dll!LoadLibraryExW + C4 7C801BB5 4 Bytes CALL 00BB0001
  1170. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1171. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!SetWindowPos 77D3C78E 3 Bytes [FF, 25, 1E]
  1172. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!SetWindowPos + 4 77D3C792 2 Bytes [A8, 71] {TEST AL, 0x71}
  1173. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!SetForegroundWindow 77D466A7 6 Bytes JMP 71AF0F5A
  1174. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!ChangeDisplaySettingsExA 77D56A51 6 Bytes JMP 71A60F5A
  1175. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 00B401F8
  1176. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 00B403FC
  1177. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00B40804
  1178. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00B40A08
  1179. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00B40600
  1180. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] USER32.dll!ChangeDisplaySettingsExW 77D791B6 6 Bytes JMP 71A30F5A
  1181. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00B31014
  1182. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00B30804
  1183. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00B30A08
  1184. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00B30C0C
  1185. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00B30E10
  1186. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 00B301F8
  1187. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 00B303FC
  1188. .text C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe[3576] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00B30600
  1189. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtCreateFile + 6 7C90D0B4 4 Bytes [28, 00, 55, 00]
  1190. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtCreateFile + B 7C90D0B9 1 Byte [E2]
  1191. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtMapViewOfSection + 6 7C90D524 1 Byte [28]
  1192. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtMapViewOfSection + 6 7C90D524 4 Bytes [28, 03, 55, 00]
  1193. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtMapViewOfSection + B 7C90D529 1 Byte [E2]
  1194. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenFile + 6 7C90D5A4 4 Bytes [68, 00, 55, 00]
  1195. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenFile + B 7C90D5A9 1 Byte [E2]
  1196. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenProcess + 6 7C90D604 4 Bytes [A8, 01, 55, 00]
  1197. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenProcess + B 7C90D609 1 Byte [E2]
  1198. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenProcessToken + 6 7C90D614 4 Bytes CALL 7B912B1A
  1199. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenProcessToken + B 7C90D619 1 Byte [E2]
  1200. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenProcessTokenEx + 6 7C90D624 4 Bytes [A8, 02, 55, 00]
  1201. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenProcessTokenEx + B 7C90D629 1 Byte [E2]
  1202. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenThread + 6 7C90D664 4 Bytes [68, 01, 55, 00]
  1203. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenThread + B 7C90D669 1 Byte [E2]
  1204. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenThreadToken + 6 7C90D674 4 Bytes [68, 02, 55, 00]
  1205. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenThreadToken + B 7C90D679 1 Byte [E2]
  1206. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenThreadTokenEx + 6 7C90D684 4 Bytes CALL 7B912B8B
  1207. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtOpenThreadTokenEx + B 7C90D689 1 Byte [E2]
  1208. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtQueryAttributesFile + 6 7C90D714 4 Bytes [A8, 00, 55, 00]
  1209. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtQueryAttributesFile + B 7C90D719 1 Byte [E2]
  1210. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtQueryFullAttributesFile + 6 7C90D7B4 4 Bytes CALL 7B912CB9
  1211. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtQueryFullAttributesFile + B 7C90D7B9 1 Byte [E2]
  1212. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtSetInformationFile + 6 7C90DC64 4 Bytes [28, 01, 55, 00]
  1213. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtSetInformationFile + B 7C90DC69 1 Byte [E2]
  1214. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtSetInformationThread + 6 7C90DCB4 4 Bytes [28, 02, 55, 00]
  1215. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtSetInformationThread + B 7C90DCB9 1 Byte [E2]
  1216. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 1 Byte [68]
  1217. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtUnmapViewOfSection + 6 7C90DF14 4 Bytes [68, 03, 55, 00]
  1218. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!NtUnmapViewOfSection + B 7C90DF19 1 Byte [E2]
  1219. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 005701F8
  1220. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!RtlDosSearchPath_U + 1D1 7C916AC2 1 Byte [62]
  1221. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ntdll.dll!LdrUnloadDll 7C916C83 5 Bytes JMP 005703FC
  1222. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] kernel32.dll!GetBinaryTypeW + 80 7C867E3C 1 Byte [62]
  1223. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ADVAPI32.dll!SetServiceObjectSecurity 77E26C29 5 Bytes JMP 00841014
  1224. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ADVAPI32.dll!ChangeServiceConfigA 77E26D11 5 Bytes JMP 00840804
  1225. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ADVAPI32.dll!ChangeServiceConfigW 77E26EA9 5 Bytes JMP 00840A08
  1226. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ADVAPI32.dll!ChangeServiceConfig2A 77E26FA9 5 Bytes JMP 00840C0C
  1227. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ADVAPI32.dll!ChangeServiceConfig2W 77E27031 5 Bytes JMP 00840E10
  1228. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ADVAPI32.dll!CreateServiceA 77E270B9 5 Bytes JMP 008401F8
  1229. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ADVAPI32.dll!CreateServiceW 77E27251 5 Bytes JMP 008403FC
  1230. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] ADVAPI32.dll!DeleteService 77E27359 5 Bytes JMP 00840600
  1231. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] USER32.dll!SetWinEventHook 77D5E3D3 5 Bytes JMP 008501F8
  1232. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] USER32.dll!UnhookWinEvent 77D5E544 5 Bytes JMP 008503FC
  1233. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 00850804
  1234. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] USER32.dll!UnhookWindowsHookEx 77D5F29F 5 Bytes JMP 00850A08
  1235. .text C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe[3704] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00850600
  1236.  
  1237. ---- Devices - GMER 1.0.15 ----
  1238.  
  1239. Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
  1240.  
  1241. AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
  1242. AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
  1243.  
  1244. Device \Driver\PCToolsProtectInjDrv \Device\PCToolsProtectInjDrv pcttProtect32.sys
  1245.  
  1246. AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
  1247.  
  1248. Device \Driver\PCTSDInjDriver32 \Device\PCTSDInjDriver32 PCTSDInj32.sys (UM Injection Driver/PC Tools)
  1249.  
  1250. AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
  1251. AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
  1252.  
  1253. ---- EOF - GMER 1.0.15 ----
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!