Inactive Found Virus but cant delete it.

[Inactive] Found Virus but cant delete it.

The Avast Home Free Edition says its JSdfka-Uz[Expl] and I have tried twice so far to delete it. Then it says action failed and just now it got deleted is that a good sign or does it mean it moved to somewhere else.

 

DDS (Ver_10-03-17.01) - NTFSx86
Run by Dad at 15:29:20.68 on Sat 08/28/2010
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Starter 6.1.7600.0.1252.1.1033.18.1015.102 [GMT -6:00]


============== Running Processes ===============

svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\HPBTWD.exe
C:\Program Files\Hewlett-Packard\HP QuickSync\QuickSync.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP QuickSync\jre\bin\javaw.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe
svchost.exe
svchost.exe
C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskhost.exe
C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe
svchost.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Dad\Downloads\dds.scr
C:\Windows\system32\conhost.exe
C:\Program Files\Internet Explorer\iexplore.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
mURLSearchHooks: AIM Toolbar Search Class: {03402f96-3dc7-4285-bc50-9e81fefafe43} - c:\program files\aim toolbar\aimtb.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: hpBHO Class: {abd3b5e1-b268-407b-a150-2641dab8d898} - c:\program files\common files\homepage protection\HomepageProtection.dll
BHO: AIM Toolbar Loader: {b0cda128-b425-4eef-a174-61a11ac5dbf8} - c:\program files\aim toolbar\aimtb.dll
BHO: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn\toolbar\3.0.0560.0\msneshellx.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\progra~1\yahoo!\companion\installs\cpn\YTSingleInstance.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Microsoft Live Search Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:\program files\msn\toolbar\3.0.0560.0\msneshellx.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
TB: AIM Toolbar: {61539ecd-cc67-4437-a03c-9aaccbd14326} - c:\program files\aim toolbar\aimtb.dll
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [Google Update] "c:\users\dad\appdata\local\google\update\GoogleUpdate.exe" /c
mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun: [HP BTW Detect Program] c:\program files\hp\HPBTWD.exe
mRun: [HP] c:\program files\hewlett-packard\hp quicksync\QuickSync.exe
mRun: [UpdatePRCShortCut] "c:\program files\hewlett-packard\recovery\muitransfer\muistartmenu.exe" "c:\program files\hewlett-packard\recovery" updatewithcreateonce "software\cyberlink\PowerRecover "
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [WirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exe
mRun: [SysTrayApp] c:\program files\idt\wdm\sttray.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe "
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe "
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe "
mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /nogui
mRun: [Zune Launcher] "c:\program files\zune\ZuneLauncher.exe "
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
uPolicies-system: WallpaperStyle = 2
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
dPolicies-system: WallpaperStyle = 2
IE: E&xport to Microsoft Excel - c:\progra~1\mif5ba~1\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\mif5ba~1\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mif5ba~1\office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
Notify: igfxcui - igfxdev.dll

============= SERVICES / DRIVERS ===============

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010-1-9 165456]
R1 DVMIO;DVMIO;c:\splash.sys\config\dvmio.sys [2009-7-27 16984]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-1-9 17744]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-1-9 50256]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2009-11-13 58368]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]

=============== Created Last 30 ================


==================== Find3M ====================


============= FINISH: 15:34:00.61 ===============

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows 7 Starter
Boot Device: \Device\HarddiskVolume3
Install Date: 10/15/2009 6:38:34 PM
System Uptime: 8/27/2010 9:14:46 PM (18 hours ago)

Motherboard: Hewlett-Packard | | 308F
Processor: Intel(R) Atom(TM) CPU N270 @ 1.60GHz | CPU 1 | 1600/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 137 GiB total, 100.36 GiB free.
D: is FIXED (NTFS) - 11 GiB total, 1.906 GiB free.

==== Disabled Device Manager Items =============

Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318}
Description: Officejet J6400 series
Device ID: ROOT\MULTIFUNCTION\0000
Manufacturer: HP
Name: Officejet J6400 series
PNP Device ID: ROOT\MULTIFUNCTION\0000
Service:

==== System Restore Points ===================

No restore point in system.

==== Installed Programs ======================

32 Bit HP CIO Components Installer
6400_Help
Acrobat.com
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.3.4
Adobe Shockwave Player
AIM 7
AIM Toolbar
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ArcSoft WebCam Companion 3
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
avast! Free Antivirus
Bonjour
bpd_scan
BPDSoftware
BPDSoftware_Ini
Broadcom 802.11 Wireless LAN Adapter
BufferChm
Choice Guard
Compatibility Pack for the 2007 Office system
Coupon Printer for Windows
CyberLink DVD Suite
Destinations
DeviceDiscovery
DocProc
Download Updater (AOL LLC)
Fax
Google Chrome
GPBaseService2
Homepage Protection
HP Customer Experience Enhancements
HP Customer Participation Program 13.0
HP Games
HP Imaging Device Functions 13.0
HP Instant Web
HP OfficeJet J6400
HP QuickSync
HP Setup
HP Smart Web Printing 4.51
HP Solution Center 13.0
HP Support Assistant
HP Update
HP User Guides 0166
HP Wireless Assistant
HPAsset component for HP Active Support Library
HPProductAssistant
HPSSupply
IDT Audio
Intel(R) Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes
J6400
Java(TM) 6 Update 15
MarketResearch
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Live Search Toolbar
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office Live Add-in 1.5
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Professional 2007
Microsoft Office Professional 2007 Trial
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Network
OCR Software by I.R.I.S. 13.0
OGA Notifier 2.0.0048.0
Power2Go
PowerRecover
ProductContext
QuickTime
Realtek USB 2.0 Card Reader
Scan
Security Update for 2007 Microsoft Office System (KB2277947)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for 2007 Microsoft Office System (KB982312)
Security Update for 2007 Microsoft Office System (KB982331)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB982308)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office Outlook 2007 (KB980376)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office Publisher 2007 (KB982124)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2251419)
Shop for HP Supplies
SmartWebPrinting
SolutionCenter
Status
Synaptics Pointing Device Driver
Toolbox
TrayApp
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (kb2279264)
WebReg
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sync
Windows Live Upload Tool
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
Zune
Zune Language Pack (DE)
Zune Language Pack (ES)
Zune Language Pack (FR)
Zune Language Pack (IT)

==== Event Viewer Messages From Past Week ========

8/28/2010 8:41:40 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
8/27/2010 6:41:26 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wlidsvc service.
8/26/2010 2:16:33 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.
8/25/2010 8:23:57 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NlaSvc service.

==== End Of File ===========================

 

I have one questions now it says I have unknown drive on the MBRCheck and at the bottom says non-standard or infected MBR. What do I do

 

Thats the problem is with the 3rd log i cant get it because of that message.

 

When it scans it comes up with unknown drive then it asks me what i need to do after it finds that unknown drive.

 

so type in n to exit it

 

Im still having trouble with the last log. Its not showing up when i do the scan on my desktop. How can I fix this.

 

I found where the where they were putting the logs. I have to switch profiles after i put up the first log.

 

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4495

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

8/28/2010 7:38:13 PM
mbam-log-2010-08-28 (19-38-13).txt

Scan type: Quick scan
Objects scanned: 122084
Time elapsed: 11 minute(s), 28 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

 

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-08-28 21:25:55
Windows 6.1.7600
Running: gdezqpls.exe; Driver: C:\Users\Krista\AppData\Local\Temp\uglcapob.sys


---- System - GMER 1.0.15 ----

INT 0x1F \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E34AF8
INT 0x37 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E34104
INT 0xC1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E343F4
INT 0xD1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E1D2D8
INT 0xD2 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E1C898
INT 0xDF \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E341DC
INT 0xE1 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E34958
INT 0xE3 \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E346F8
INT 0xFD \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E34F2C
INT 0xFE \SystemRoot\system32\halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 81E351A8

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateProcessEx [0x8A7B1B9C]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateSection [0x8A7B19C0]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwLoadDriver [0x8A7B1AFA]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) NtCreateSection
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ObMakeTemporaryObject

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwSaveKeyEx + 13AD 81A4D599 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 81A71F52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text peauth.sys A5428C9D 28 Bytes [9E, 2A, CE, 95, 6A, D6, 09, ...]
.text peauth.sys A5428CC1 28 Bytes [9E, 2A, CE, 95, 6A, D6, 09, ...]

---- User code sections - GMER 1.0.15 ----

.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 08, 00] {SUB [EAX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 08, 00] {SUB [EBX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 08, 00] {TEST AL, 0x1; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76195A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 08, 00] {TEST AL, 0x2; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76195A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 08, 00] {TEST AL, 0x0; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76195C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 08, 00] {SUB [ECX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 08, 00] {SUB [EDX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 18, 00] {SUB [EAX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 18, 00] {SUB [EBX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 18, 00] {TEST AL, 0x1; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76196A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 18, 00] {TEST AL, 0x2; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76196A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 18, 00] {TEST AL, 0x0; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76196C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 18, 00] {SUB [ECX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 18, 00] {SUB [EDX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 08, 00] {SUB [EAX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 08, 00] {SUB [EBX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 08, 00] {TEST AL, 0x1; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76195A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 08, 00] {TEST AL, 0x2; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76195A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 08, 00] {TEST AL, 0x0; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76195C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 08, 00] {SUB [ECX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 08, 00] {SUB [EDX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 08, 00] {SUB [EAX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 08, 00] {SUB [EBX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 08, 00] {TEST AL, 0x1; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76195A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 08, 00] {TEST AL, 0x2; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76195A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 08, 00] {TEST AL, 0x0; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76195C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 08, 00] {SUB [ECX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 08, 00] {SUB [EDX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 08, 00] {SUB [EAX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 08, 00] {SUB [EBX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 08, 00] {TEST AL, 0x1; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76195A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 08, 00] {TEST AL, 0x2; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76195A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 08, 00] {TEST AL, 0x0; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76195C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 08, 00] {SUB [ECX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 08, 00] {SUB [EDX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 18, 00] {SUB [EAX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 18, 00] {SUB [EBX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 18, 00] {TEST AL, 0x1; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76196A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 18, 00] {TEST AL, 0x2; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76196A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 18, 00] {TEST AL, 0x0; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76196C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 18, 00] {SUB [ECX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 18, 00] {SUB [EDX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 18, 00] {SUB [EAX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 18, 00] {SUB [EBX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text

 

C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 18, 00] {TEST AL, 0x1; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76196A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 18, 00] {TEST AL, 0x2; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76196A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 18, 00] {TEST AL, 0x0; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76196C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 18, 00] {SUB [ECX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 18, 00] {SUB [EDX], AL; SBB [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 18, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 08, 00] {SUB [EAX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 08, 00] {SUB [EBX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 08, 00] {TEST AL, 0x1; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76195A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 08, 00] {TEST AL, 0x2; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76195A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 08, 00] {TEST AL, 0x0; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76195C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 08, 00] {SUB [ECX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 08, 00] {SUB [EDX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 08, 00] {SUB [EAX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 08, 00] {SUB [EBX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 08, 00] {TEST AL, 0x1; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76195A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 08, 00] {TEST AL, 0x2; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76195A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 08, 00] {TEST AL, 0x0; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76195C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 08, 00] {SUB [ECX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 08, 00] {SUB [EDX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 08, 00] {SUB [EAX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 08, 00] {SUB [EBX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 08, 00] {TEST AL, 0x1; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76195A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 08, 00] {TEST AL, 0x2; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76195A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 08, 00] {TEST AL, 0x0; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76195C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 08, 00] {SUB [ECX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 08, 00] {SUB [EDX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtCreateFile + 6 77194A36 4 Bytes [28, 00, 08, 00] {SUB [EAX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtCreateFile + B 77194A3B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtMapViewOfSection + 6 77195096 1 Byte [28]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtMapViewOfSection + 6 77195096 4 Bytes [28, 03, 08, 00] {SUB [EBX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtMapViewOfSection + B 7719509B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenFile + 6 77195146 4 Bytes [68, 00, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenFile + B 7719514B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenProcess + 6 771951F6 4 Bytes [A8, 01, 08, 00] {TEST AL, 0x1; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenProcess + B 771951FB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenProcessToken + 6 77195206 4 Bytes CALL 76195A0C C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenProcessToken + B 7719520B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenProcessTokenEx + 6 77195216 4 Bytes [A8, 02, 08, 00] {TEST AL, 0x2; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenProcessTokenEx + B 7719521B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenThread + 6 77195276 4 Bytes [68, 01, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenThread + B 7719527B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenThreadToken + 6 77195286 4 Bytes [68, 02, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenThreadToken + B 7719528B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenThreadTokenEx + 6 77195296 4 Bytes CALL 76195A9D C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtOpenThreadTokenEx + B 7719529B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtQueryAttributesFile + 6 771953A6 4 Bytes [A8, 00, 08, 00] {TEST AL, 0x0; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtQueryAttributesFile + B 771953AB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtQueryFullAttributesFile + 6 77195456 4 Bytes CALL 76195C5B C:\Windows\system32\SHELL32.dll (Windows Shell Common Dll/Microsoft Corporation)
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtQueryFullAttributesFile + B 7719545B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtSetInformationFile + 6 77195AA6 4 Bytes [28, 01, 08, 00] {SUB [ECX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtSetInformationFile + B 77195AAB 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtSetInformationThread + 6 77195B06 4 Bytes [28, 02, 08, 00] {SUB [EDX], AL; OR [EAX], AL}
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtSetInformationThread + B 77195B0B 1 Byte [E2]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 1 Byte [68]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtUnmapViewOfSection + 6 77195E26 4 Bytes [68, 03, 08, 00]
.text C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] ntdll.dll!NtUnmapViewOfSection + B 77195E2B 1 Byte [E2]

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[396] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[396] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[396] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[396] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[396] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[396] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[396] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[1612] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[1812] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[1812] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[1812] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[1812] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[1812] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[1812] @ C:\Windows\system32\secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Zune\ZuneLauncher.exe[2872] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Zune\ZuneLauncher.exe[2872] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Zune\ZuneLauncher.exe[2872] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Zune\ZuneLauncher.exe[2872] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [73F22494] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [73F05624] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [73F056E2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [73F2250F] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [73F18573] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [73F14D27] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [73F150CE] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [73F151A3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromHBITMAP] [73F166D0] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [73F182CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [73F18819] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [73F1907A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [73F1E21D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[3852] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [73F14C59] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4180] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[4960] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5012] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5016] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5256] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5280] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5324] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5624] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5652] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[5676] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[6096] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[6096] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[6096] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[6096] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[6096] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[6096] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Users\Dad\AppData\Local\Google\Chrome\Application\chrome.exe[6096] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [75265E25] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)

 

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)

Device \Driver\ACPI_HAL \Device\0000004a halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

AttachedDevice \Driver\tdx \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\001a6b2af2e9
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\001a6b2af2e9 (not active ControlSet)

---- EOF - GMER 1.0.15 ----