--------------------------------------------------------------------------------

1. --------------------------------------------------------------------------------
2. Starting profile on 15-02-25 at 12:58:05
3.  
4. Operating System: Microsoft Windows 98 (32-bit), version 4.10.2222 A (Second Edition)
5. Program Executable: c:\windows\WELCOME.EXE
6. Program Arguments:
7. Starting Directory: C:\WINDOWS\
8. Search Path: C:\WINDOWS;C:\WINDOWS\COMMAND
9.  
10. Options Selected:
11. Simulate ShellExecute by inserting any App Paths directories into the PATH environment variable.
12. Log DllMain calls for process attach and process detach messages.
13. Log DllMain calls for all other messages, including thread attach and thread detach.
14. Hook the process to gather more detailed dependency information.
15. Log LoadLibrary function calls.
16. Log GetProcAddress function calls.
17. Log thread information.
18. Use simple thread numbers instead of actual thread IDs.
19. Log first chance exceptions.
20. Log debug output messages.
21. Use full paths when logging file names.
22. Log a time stamp with each line of log.
23. Automatically open and profile child processes.
24. --------------------------------------------------------------------------------
25.  
26. 00:00:00.000: Started "c:\windows\WELCOME.EXE" (process 0xFFFD942B) at address 0x00400000 by thread 1. Successfully hooked module.
27. 00:00:00.007: Loaded "c:\windows\system\WINMM.DLL" at address 0xBFDF0000 by thread 1. Shared module not hooked.
28. 00:00:00.009: Loaded "c:\windows\system\COMCTL32.DLL" at address 0xBFE90000 by thread 1. Shared module not hooked.
29. 00:00:00.013: Loaded "c:\windows\system\SHLWAPI.DLL" at address 0x70BD0000 by thread 1. Successfully hooked module.
30. 00:00:00.018: Loaded "c:\windows\system\SHELL32.DLL" at address 0x7FCB0000 by thread 1. Successfully hooked module.
31. 00:00:00.020: Loaded "c:\windows\system\ADVAPI32.DLL" at address 0xBFE80000 by thread 1. Shared module not hooked.
32. 00:00:00.026: Loaded "c:\windows\system\GDI32.DLL" at address 0xBFF20000 by thread 1. Shared module not hooked.
33. 00:00:00.028: Loaded "c:\windows\system\USER32.DLL" at address 0xBFF50000 by thread 1. Shared module not hooked.
34. 00:00:00.417: Loaded "c:\windows\system\KERNEL32.DLL" at address 0xBFF70000 by thread 1. Shared module not hooked.
35. 00:00:00.417: Entrypoint reached. All implicit modules have been loaded.
36. 00:00:00.421: Injected "c:\windows\pulpit\depends22_x86\DEPENDS.DLL" at address 0x08370000 by thread 1.
37. 00:00:00.422: DllMain(0x08370000, DLL_PROCESS_ATTACH, 0x00000000) in "c:\windows\pulpit\depends22_x86\DEPENDS.DLL" called by thread 1.
38. 00:00:00.429: DllMain(0x08370000, DLL_PROCESS_ATTACH, 0x00000000) in "c:\windows\pulpit\depends22_x86\DEPENDS.DLL" returned 1 (0x1) by thread 1.
39. 00:00:00.906: DllMain(0x70BD0000, DLL_PROCESS_ATTACH, 0x00000001) in "c:\windows\system\SHLWAPI.DLL" called by thread 1.
40. 00:00:00.907: DllMain(0x70BD0000, DLL_PROCESS_ATTACH, 0x00000001) in "c:\windows\system\SHLWAPI.DLL" returned 1 (0x1) by thread 1.
41. 00:00:00.912: DllMain(0x7FCB0000, DLL_PROCESS_ATTACH, 0x00000001) in "c:\windows\system\SHELL32.DLL" called by thread 1.
42. 00:00:00.916: DllMain(0x7FCB0000, DLL_PROCESS_ATTACH, 0x00000001) in "c:\windows\system\SHELL32.DLL" returned 1 (0x1) by thread 1.
43. 00:00:00.922: GetProcAddress(0xBFF70000 [c:\windows\system\KERNEL32.DLL], "IsProcessorFeaturePresent") called from "c:\windows\WELCOME.EXE" at address 0x0040766B and returned 0x835E5A18 by thread 1.
44. 00:00:00.941: Thread 2 started in "c:\windows\system\WINMM.DLL" at address 0xBFDF3547.
45. 00:00:00.943: DllMain(0x7FCB0000, DLL_THREAD_ATTACH, 0x00000000) in "c:\windows\system\SHELL32.DLL" called by thread 2.
46. 00:00:00.944: DllMain(0x7FCB0000, DLL_THREAD_ATTACH, 0x00000000) in "c:\windows\system\SHELL32.DLL" returned 1 (0x1) by thread 2.
47. 00:00:01.039: Loaded "c:\windows\system\MSACM32.DLL" at address 0x7B680000 by thread 1. Successfully hooked module.
48. 00:00:01.053: DllMain(0x7B680000, DLL_PROCESS_ATTACH, 0x00000000) in "c:\windows\system\MSACM32.DLL" called by thread 1.
49. 00:00:01.056: LoadLibraryA("WINMM") called from "c:\windows\system\MSACM32.DLL" at address 0x7B683DEB by thread 1.
50. 00:00:01.059: LoadLibraryA("WINMM") returned 0xBFDF0000 by thread 1.
51. 00:00:01.071: DllMain(0x7B680000, DLL_PROCESS_ATTACH, 0x00000000) in "c:\windows\system\MSACM32.DLL" returned 1 (0x1) by thread 1.
52. 00:00:01.087: Loaded "c:\windows\system\MSADP32.ACM" at address 0x75C10000 by thread 1. Successfully hooked module.
53. 00:00:09.907: Thread 2 exited with code -1 (0xFFFFFFFF).
54. 00:00:09.909: DllMain(0x7B680000, DLL_PROCESS_DETACH, 0x00000001) in "c:\windows\system\MSACM32.DLL" called by thread 1.
55. 00:00:09.911: DllMain(0x7B680000, DLL_PROCESS_DETACH, 0x00000001) in "c:\windows\system\MSACM32.DLL" returned 1 (0x1) by thread 1.
56. 00:00:09.913: DllMain(0x7FCB0000, DLL_PROCESS_DETACH, 0x00000001) in "c:\windows\system\SHELL32.DLL" called by thread 1.
57. 00:00:09.915: DllMain(0x7FCB0000, DLL_PROCESS_DETACH, 0x00000001) in "c:\windows\system\SHELL32.DLL" returned 1 (0x1) by thread 1.
58. 00:00:09.916: DllMain(0x70BD0000, DLL_PROCESS_DETACH, 0x00000001) in "c:\windows\system\SHLWAPI.DLL" called by thread 1.
59. 00:00:09.918: DllMain(0x70BD0000, DLL_PROCESS_DETACH, 0x00000001) in "c:\windows\system\SHLWAPI.DLL" returned 1 (0x1) by thread 1.
60. 00:00:09.920: DllMain(0x08370000, DLL_PROCESS_DETACH, 0x00000001) in "c:\windows\pulpit\depends22_x86\DEPENDS.DLL" called by thread 1.
61. 00:00:09.922: DllMain(0x08370000, DLL_PROCESS_DETACH, 0x00000001) in "c:\windows\pulpit\depends22_x86\DEPENDS.DLL" returned 1 (0x1) by thread 1.
62. 00:00:09.923: Exited "c:\windows\WELCOME.EXE" (process 0xFFFD942B) with code 0 (0x0) by thread 1.