Solved Checking Room PC For Problems.

[Resolved] Checking Room PC For Problems.

I am unaware of why my room pc is having problems. The problems with my room pc is that often the avast antivirus I have has problems where the real time shield is turned off, or that the avast program itself is turned off. This usually occurs after I turn off the pc for the day. This occurs after about a month, give or take, each time this problem appears. I try to reactivate the antivirus, but the program just freezes. I usually fix this issue by completely uninstalling avast, and then reinstalling the program. After reinstalling and restarting the pc, I usually have no problems for a while. Now, I have a problem that I don't know what the source may be. The problem is that after reinstalling avast antivirus, the game that I usually play freezes up when I try to play the game. I've thought about how can this problem arise, and I decided to uninstall avast antivirus and try running the game then. The game ran as it did not even a week ago, not a single delay. Now, I've been playing the same game for months now, so, the game itself should not be the problem. From what I have gathered thus far, since I have had the problem with avast this recent time, avast somehow freezes up the game program. When avast is uninstalled or turned off, then the game runs fine. This was not the scenario as it was a week ago. Therefore, I would like help with seeing if my pc has something that could be causing this problem occuring by some hidden maleware or virus that avast full scan, maleware bytes full scan, windows defender full scan, or even an ad-aware full can, could not find. I've run scans of all of those programs and found nothing. Please help me fix this issue.

 

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5945

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

3/3/2011 1:25:03 PM
mbam-log-2011-03-03 (13-25-02).txt

Scan type: Quick scan
Objects scanned: 202597
Time elapsed: 14 minute(s), 46 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

 

DDS (Ver_10-12-12.02) - NTFSx86
Run by Nelson Ramon Arucas at 13:13:45.82 on Thu 03/03/2011
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1791.953 [GMT -5:00]

AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Firewall *Enabled*

============== Running Processes ===============

D:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
D:\Program Files\Windows Defender\MsMpEng.exe
D:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\WINDOWS\system32\ZoneLabs\vsmon.exe
D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
D:\Program Files\AVAST Software\Avast\AvastSvc.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\system32\acs.exe
svchost.exe
D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe
D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
D:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\Program Files\Sandboxie\SbieSvc.exe
D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
D:\Program Files\Secunia\PSI\PSIA.exe
D:\WINDOWS\system32\svchost.exe -k imgsvc
D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\ctfmon.exe
D:\WINDOWS\system32\wscntfy.exe
D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\Common Files\Java\Java Update\jusched.exe
D:\Program Files\AVAST Software\Avast\avastUI.exe
D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe
D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\NETGEAR\WN111v2\WN111V2.exe
D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
D:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
D:\Program Files\internet explorer\iexplore.exe
D:\WINDOWS\system32\taskmgr.exe
D:\Program Files\Secunia\PSI\sua.exe
D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
D:\Program Files\Windows Live\Toolbar\wltuser.exe
D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
D:\Documents and Settings\Nelson Ramon Arucas\Desktop\MBRCheck.exe
D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.comcast.net/
uInternet Settings,ProxyOverride = *.local
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - d:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - d:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - d:\program files\spybot - search & destroy\SDHelper.dll
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - d:\program files\yahoo!\common\yiesrvc.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - d:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: Comcast Toolbar: {79ceea4e-c231-4614-9e3b-53b2a02f39b7} - d:\program files\comcasttb\comcastdx.dll
BHO: {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - No File
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - d:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - d:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: {91da5e8a-3318-4f8c-b67e-5964de3ab546} - No File
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - d:\program files\google\googletoolbar2.dll
BHO: WOT Helper: {c920e44a-7f78-4e64-bdd7-a57026e7feb7} - d:\program files\wot\WOT.dll
BHO: MSN Toolbar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - d:\program files\msn toolbar\platform\4.0.0417.0\npwinext.dll
BHO: Foxit Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - d:\program files\ask.com\GenericAskToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - d:\program files\windows live\toolbar\wltcore.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Yahoo! ¤u¨Ã£¦C: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - d:\progra~1\yahoo!\companion\installs\cpn\yt.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - d:\program files\google\googletoolbar2.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - d:\program files\windows live\toolbar\wltcore.dll
TB: Comcast Toolbar: {79ceea4e-c231-4614-9e3b-53b2a02f39b7} - d:\program files\comcasttb\comcastdx.dll
TB: Foxit Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - d:\program files\ask.com\GenericAskToolbar.dll
TB: MSN Toolbar: {8dcb7100-df86-4384-8842-8fa844297b3f} - d:\program files\msn toolbar\platform\4.0.0417.0\npwinext.dll
TB: WOT: {71576546-354d-41c9-aae8-31f2ec22bf0d} - d:\program files\wot\WOT.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - d:\program files\avast software\avast\aswWebRepIE.dll
TB: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File
uRun: [ctfmon.exe] d:\windows\system32\ctfmon.exe
uRun: [Yahoo! Pager] "d:\progra~1\yahoo!\messen~1\YAHOOM~1.EXE" -quiet
uRun: [SpybotSD TeaTimer] d:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [SandboxieControl] "d:\program files\sandboxie\SbieCtrl.exe "
uRun: [msnmsgr] "d:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [ComcastAntispyClient] "d:\program files\comcasttb\comcastspywarescan\ComcastAntispy.exe" /hide
uRun: [FileHippo.com] "d:\program files\filehippo.com\UpdateChecker.exe" /background
mRun: [NvCplDaemon] RUNDLL32.EXE d:\windows\system32\NvCpl.dll,NvStartup
mRun: [HP Software Update] d:\program files\hewlett-packard\hp software update\HPWuSchd2.exe
mRun: [Adobe Reader Speed Launcher] "d:\program files\adobe\reader 10.0\reader\Reader_sl.exe "
mRun: [Adobe ARM] "d:\program files\common files\adobe\arm\1.0\AdobeARM.exe "
mRun: [MSN Toolbar] "d:\program files\msn toolbar\platform\4.0.0417.0\mswinext.exe "
mRun: [Microsoft Default Manager] "d:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [jswtrayutil] "d:\program files\netgear\wn111v2\jswtrayutil.exe "
mRun: [ZoneAlarm Client] "d:\program files\zone labs\zonealarm\zlclient.exe "
mRun: [QuickTime Task] "d:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "d:\program files\itunes\iTunesHelper.exe "
mRun: [SunJavaUpdateSched] "d:\program files\common files\java\java update\jusched.exe "
mRun: [avast] "d:\program files\avast software\avast\avastUI.exe" /nogui
dRun: [DWQueuedReporting] "d:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
dRunOnce: [WUAppSetup] d:\program files\common files\logishrd\WUApp32.exe -v 0x046d -p 0x08b2 -f video -m logitech -d 10.5.1.2023
StartupFolder: d:\docume~1\nelson~1\startm~1\programs\startup\openof~1.lnk - d:\program files\openoffice.org 3\program\quickstart.exe
StartupFolder: d:\docume~1\nelson~1\startm~1\programs\startup\xfire.lnk - d:\program files\xfire\xfire.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - d:\program files\hewlett-packard\digital imaging\bin\hpqtra08.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\hppsc2~1.lnk - d:\program files\hewlett-packard\digital imaging\bin\hpobnz08.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\launch~1.lnk - d:\program files\saitek\software\ProfilerU.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\logite~1.lnk - d:\program files\logitech\desktop messenger\8876480\program\LDMConf.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\mcafee~1.lnk - d:\program files\mcafee security scan\2.0.181\SSScheduler.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\netgea~1.lnk - d:\program files\netgear\wn111v2\WN111V2.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\office~1.lnk - d:\program files\hewlett-packard\digital imaging\bin\hposol08.exe
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\secuni~1.lnk - d:\program files\secunia\psi\psi_tray.exe
uPolicies-explorer: NoInstrumentation = 1 (0x1)
dPolicies-explorer: ForceClassicControlPanel = 1 (0x1)
dPolicies-explorer: NoInstrumentation = 1 (0x1)
IE: E&xport to Microsoft Excel - d:\progra~1\micros~1\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\program files\messenger\msmsgs.exe
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - d:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - d:\program files\yahoo!\common\yiesrvc.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~1\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - d:\windows\system32\Shdocvw.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - d:\program files\spybot - search & destroy\SDHelper.dll
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/E/3/9/E39C664F-A8E3-4F69-A109-1AE9849204EE/OGAControl.cab
DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} - hxxps://support.microsoft.com/Dcode/ActiveX/MSDcode.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} - hxxp://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - d:\program files\yahoo!\common\Yinsthelper.dll
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx1.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
DPF: {54BE6B6F-3056-470B-97E1-BB92E051B6C4} - hxxp://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1272133539471
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1272133528581
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {88D969C0-F192-11D4-A65F-0040963251E5} - hxxp://ipgweb.cce.hp.com/rdqaio2/downloads/msxml4.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - d:\program files\wot\WOT.dll
SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - d:\progra~1\wifd1f~1\MpShHook.dll

============= SERVICES / DRIVERS ===============

R1 aswSnx;aswSnx;d:\windows\system32\drivers\aswSnx.sys [2011-3-2 371544]
R1 aswSP;aswSP;d:\windows\system32\drivers\aswSP.sys [2011-3-2 301528]
R1 vsdatant;vsdatant;d:\windows\system32\vsdatant.sys [2011-1-28 532224]
R2 aawservice;Lavasoft Ad-Aware Service;d:\program files\lavasoft\ad-aware\aawservice.exe [2008-7-7 611664]
R2 AntiSpywareService;Comcast AntiSpyware;d:\program files\comcasttb\comcastspywarescan\ComcastAntiSpyService.exe [2009-6-17 616408]
R2 aswFsBlk;aswFsBlk;d:\windows\system32\drivers\aswFsBlk.sys [2011-3-2 19544]
R2 avast! Antivirus;avast! Antivirus;d:\program files\avast software\avast\AvastSvc.exe [2011-3-2 42184]
R2 fssfltr;FssFltr;d:\windows\system32\drivers\fssfltr_tdi.sys [2009-10-22 54752]
R2 PEDRV;P&E Microcomputer System PCI Driver.;d:\windows\system32\drivers\pedrv.sys [2000-8-3 23296]
R2 Secunia PSI Agent;Secunia PSI Agent;d:\program files\secunia\psi\psia.exe [2011-1-5 988216]
R2 Secunia Update Agent;Secunia Update Agent;d:\program files\secunia\psi\sua.exe [2011-1-5 399416]
R2 vsmon;TrueVector Internet Monitor;d:\windows\system32\zonelabs\vsmon.exe -service --> d:\windows\system32\zonelabs\vsmon.exe -service [?]
R2 WinDefend;Windows Defender;d:\program files\windows defender\MsMpEng.exe [2006-11-3 13592]
R3 DNINDIS5;DNINDIS5 NDIS Protocol Driver;d:\windows\system32\DNINDIS5.sys [2003-7-24 17149]
R3 JSWSCIMD;jswscimd Service;d:\windows\system32\drivers\jswscimd.sys [2008-10-1 57440]
R3 PSI;PSI;d:\windows\system32\drivers\psi_mf.sys [2010-9-1 15544]
R3 SaiH5F0D;SaiH5F0D;d:\windows\system32\drivers\SaiH5F0D.sys [2008-4-4 176640]
R3 SaiU5F0D;SaiU5F0D;d:\windows\system32\drivers\SaiU5F0D.sys [2008-4-4 27264]
R3 SbieDrv;SbieDrv;d:\program files\sandboxie\SbieDrv.sys [2011-1-12 125672]
R4 MBAMSwissArmy;MBAMSwissArmy;d:\windows\system32\drivers\mbamswissarmy.sys [2011-1-7 38224]
S2 gupdate;Google Update Service (gupdate);d:\program files\google\update\GoogleUpdate.exe [2011-1-10 136176]
S3 fsssvc;Windows Live Family Safety Service;d:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864]
S3 jswpsapi;Jumpstart Wifi Protected Setup;d:\program files\netgear\wn111v2\jswpsapi.exe [2008-2-27 360547]
S3 McComponentHostService;McAfee Security Scan Component Host Service;d:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 nosGetPlusHelper;getPlus(R) Helper 3004;d:\windows\system32\svchost.exe -k nosGetPlusHelper [2004-8-3 14336]
S3 WN111v2;NETGEAR WN111v2 USB2.0 Wireless Card Service;d:\windows\system32\drivers\WN111v2.sys [2009-1-14 458752]

=============== Created Last 30 ================

2011-03-03 03:33:58 371544 ----a-w- d:\windows\system32\drivers\aswSnx.sys
2011-03-03 03:33:28 40648 ----a-w- d:\windows\avastSS.scr
2011-03-03 03:33:17 -------- d-----w- d:\docume~1\alluse~1\applic~1\AVAST Software
2011-03-03 03:33:16 -------- d-----w- d:\program files\AVAST Software
2011-03-01 06:47:25 5943120 ----a-w- d:\docume~1\alluse~1\applic~1\microsoft\windows defender\definition updates\{5aaf2eb2-313b-4a96-a36c-30d0d528a40a}\mpengine.dll
2011-02-26 01:19:32 41872 ----a-w- d:\windows\system32\xfcodec.dll
2011-02-25 07:04:57 -------- d-----w- D:\fbfc6cc0495fefa7710205ca
2011-02-05 19:33:15 -------- d-----w- d:\program files\iPod
2011-02-05 19:33:01 -------- d-----w- d:\program files\iTunes
2011-02-05 19:33:01 -------- d-----w- d:\docume~1\alluse~1\applic~1\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2011-02-05 19:28:29 -------- d-----w- d:\program files\Bonjour

==================== Find3M ====================

2011-02-03 02:40:23 472808 ----a-w- d:\windows\system32\deployJava1.dll
2011-02-03 00:19:39 73728 ----a-w- d:\windows\system32\javacpl.cpl
2011-02-02 22:11:20 222080 ------w- d:\windows\system32\MpSigStub.exe
2004-09-11 01:18:54 5923328 ------r- d:\program files\PRO11.MSI
2004-09-11 01:18:18 604672 ------r- d:\program files\OWC11.MSI
2004-09-11 01:18:18 560128 ------r- d:\program files\OWC10.MSI

============= FINISH: 13:17:49.09 ===============

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.02)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 4/3/2008 8:55:25 AM
System Uptime: 3/3/2011 12:58:19 PM (1 hours ago)

Motherboard: MSI | | MS-7309
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ | CPU 1 | 2109/200mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (FAT32) - 5 GiB total, 0.031 GiB free.
D: is FIXED (NTFS) - 51 GiB total, 23.868 GiB free.
E: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP57: 3/2/2011 7:46:29 PM - avast! Free Antivirus Setup
RP58: 3/2/2011 7:59:34 PM - avast! Free Antivirus Setup
RP59: 3/2/2011 10:09:07 PM - avast! Free Antivirus Setup
RP60: 3/2/2011 10:33:16 PM - avast! Free Antivirus Setup

==== Installed Programs ======================

Ad-Aware
Adobe AIR
Adobe Download Manager
Adobe Flash Player 10 ActiveX
Adobe Reader X
AiO_Scan_CDA
AiOSoftwareNPI
AirRivals 1.0.0.26
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Ask Toolbar
avast! Free Antivirus
Bonjour
BufferChm
CA Pest Patrol Realtime Protection
CodeWarrior Development Studio for S12(X) V5.0
Comcast High-Speed Internet Install Wizard
Comcast Toolbar 3.0
Compatibility Pack for the 2007 Office system
CP_Package_Variety1
CP_Package_Variety2
CP_Package_Variety3
Destinations
DeviceManagementQFolder
DFOLauncher
DMI Browse
DocProc
ESET Online Scanner v3
eSupportQFolder
F300
F300_Help
F300Trb
Fax_CDA
FileHippo.com Update Checker
Foxit Reader
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
High Definition Audio Driver Package - KB888111
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB961118)
HP Driver Diagnostics
HP Imaging Device Functions 6.1
HP Photo and Imaging 1.0 - HP PSC - HP OfficeJet
HP Photo and Imaging 1.0 - HP PSC - HP OfficeJet Drivers
HP Photosmart Essential
HP Print Diagnostic Utility
HP PSC & OfficeJet 6.1.A
HP Software Update
HP Solution Center and Imaging Support Tools 6.1
HPProductAssistant
i-Speeder
ImgBurn
InfoView
iTunes
Java Auto Updater
Java(TM) 6 Update 24
Java(TM) 6 Update 5
Java(TM) 6 Update 7
Junk Mail filter update
Logitech Desktop Messenger
Logitech IM Video Companion
Logitech ImageStudio
Logitech Print Service
Malwarebytes' Anti-Malware
McAfee Security Scan Plus
MGI PhotoSuite 4 (Remove Only)
MGI VideoWave 4
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Default Manager
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Move Media Player
MSN Toolbar
MSN Toolbar Platform
MSVCRT
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MyScribe
NewCopy_CDA
NVIDIA DDS Utilities
NVIDIA Drivers
NVIDIA Photoshop Plug-ins
OpenOffice.org 3.0
Pando Media Booster
Philips Firmware Manager
ProductContextNPI
QuickTime
RangeMax Wireless-N USB Adapter WN111v2
Readiris 7.5
Readme
RealPlayer 7 Basic
Realtek High Definition Audio Driver
Registry Mechanic 5.2
Rhapsody Player Engine
Saitek SST Programming Software
Sandboxie 3.52
Scan
ScannerCopy
Secunia PSI (2.0.0.2001)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Segoe UI
SolutionCenter
Spybot - Search & Destroy
Status
Steam
TeamSpeak 3 Client
Toolbox
TrayApp
Unload
Unreal Anthology
UnrealKeyChanger
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB973815)
UT2004Mi v2.00
Ventrilo Client
WebFldrs XP
WebReg
Winamp
Windows Defender
Windows Driver Package - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
Windows Driver Package - SofTec Microsystems (sft02) SofTecUSBDevices (02/07/2007 2.40.0.0)
Windows Internet Explorer 7
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sync
Windows Live Toolbar
Windows Live Upload Tool
Windows Live Writer
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
WinRAR archiver
WMIinfo
WN111v2
WOT for Internet Explorer
WOT Services
Xfire (remove only)
Xirrus Wi-Fi Inspector
Yahoo! Browser Services
Yahoo! Install Manager
Yahoo! Internet Mail
Yahoo! Messenger
Yahoo! ¤u¨Ã£¦C
ZoneAlarm
ZoneAlarm Spy Blocker

==== Event Viewer Messages From Past Week ========

3/3/2011 12:50:26 PM, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period.
3/3/2011 12:19:22 AM, error: Service Control Manager [7034] - The NVIDIA Display Driver Service service terminated unexpectedly. It has done this 1 time(s).
3/3/2011 12:19:22 AM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).
3/3/2011 12:19:22 AM, error: Service Control Manager [7034] - The Atheros Configuration Service service terminated unexpectedly. It has done this 1 time(s).
3/3/2011 12:19:22 AM, error: Service Control Manager [7031] - The Windows Defender service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
3/3/2011 12:19:22 AM, error: Service Control Manager [7031] - The Lavasoft Ad-Aware Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.
3/3/2011 12:19:22 AM, error: Service Control Manager [7031] - The avast! Antivirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.
3/2/2011 9:34:51 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the iPod Service service to connect.
3/2/2011 9:34:51 PM, error: Service Control Manager [7000] - The iPod Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
3/2/2011 9:34:51 PM, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service iPod Service with arguments " " in order to run the server: {063D34A4-BF84-4B8D-B699-E8CA06504DDE}
3/2/2011 9:33:23 PM, error: Service Control Manager [7000] - The Application Layer Gateway Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
3/2/2011 9:32:44 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.
3/2/2011 9:21:14 PM, error: Service Control Manager [7034] - The Secunia Update Agent service terminated unexpectedly. It has done this 3 time(s).
3/2/2011 9:21:01 PM, error: Service Control Manager [7034] - The Secunia Update Agent service terminated unexpectedly. It has done this 2 time(s).
3/2/2011 8:09:06 PM, error: Service Control Manager [7034] - The Windows Installer service terminated unexpectedly. It has done this 1 time(s).
3/2/2011 7:27:43 PM, error: Service Control Manager [7034] - The CA Pest Patrol Realtime Protection Service service terminated unexpectedly. It has done this 1 time(s).
3/2/2011 4:22:18 PM, error: BROWSER [8009] - The browser was unable to promote itself to master browser. The computer that currently believes it is the master browser is MICRO-XOKJPVXJY.
3/2/2011 4:04:55 PM, error: NetBT [4321] - The name "WORKGROUP :1d" could not be registered on the Interface with IP address 192.168.1.2. The machine with the IP address 192.168.1.3 did not allow the name to be claimed by this machine.
3/2/2011 3:26:07 AM, error: Service Control Manager [7034] - The iPod Service service terminated unexpectedly. It has done this 2 time(s).
3/2/2011 3:25:43 AM, error: Service Control Manager [7034] - The SeaPort service terminated unexpectedly. It has done this 2 time(s).
3/2/2011 2:03:57 PM, error: Service Control Manager [7034] - The SeaPort service terminated unexpectedly. It has done this 3 time(s).
3/2/2011 11:11:29 PM, error: Service Control Manager [7034] - The Pml Driver HPZ12 service terminated unexpectedly. It has done this 1 time(s).
3/2/2011 11:09:13 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Pml Driver HPZ12 service to connect.
3/2/2011 11:09:13 PM, error: Service Control Manager [7000] - The Pml Driver HPZ12 service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
2/28/2011 12:52:52 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Google Update Service (gupdate) service to connect.
2/28/2011 12:52:52 PM, error: Service Control Manager [7000] - The Google Update Service (gupdate) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
2/28/2011 12:51:08 PM, error: Dhcp [1002] - The IP address lease 192.168.1.2 for the Network Card with network address 0024B263A8C8 has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
2/28/2011 12:50:46 PM, error: ParVdm [2] - Unable to get device object pointer for port object.
2/28/2011 1:06:40 PM, error: Service Control Manager [7034] - The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 3 time(s).
2/28/2011 1:06:27 PM, error: Service Control Manager [7031] - The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
2/28/2011 1:06:21 PM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
2/28/2011 1:06:17 PM, error: Service Control Manager [7034] - The Office Source Engine service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:06:11 PM, error: Service Control Manager [7031] - The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
2/28/2011 1:06:07 PM, error: Service Control Manager [7034] - The Windows User Mode Driver Framework service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:06:03 PM, error: Service Control Manager [7034] - The Secunia Update Agent service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:05:56 PM, error: Service Control Manager [7034] - The SeaPort service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:05:54 PM, error: Service Control Manager [7034] - The Sandboxie Service service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:05:51 PM, error: Service Control Manager [7034] - The Secunia PSI Agent service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:05:39 PM, error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:05:31 PM, error: Service Control Manager [7034] - The iPod Service service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:05:24 PM, error: Service Control Manager [7034] - The Comcast AntiSpyware service terminated unexpectedly. It has done this 1 time(s).
2/28/2011 1:05:17 PM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
2/28/2011 1:04:42 PM, error: Sr [1] - The System Restore filter encountered the unexpected error '0xC000007F' while processing the file 'desktop.ini' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
2/26/2011 12:32:53 PM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 3 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
2/26/2011 12:23:30 PM, error: Service Control Manager [7034] - The Print Spooler service terminated unexpectedly. It has done this 1 time(s).
2/25/2011 12:44:22 PM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 4 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

==== End Of File ===========================

 

GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2011-03-03 15:41:01
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4 SAMSUNG_SV0602H rev.RH100-09
Running: GMER.exe; Driver: D:\DOCUME~1\NELSON~1\LOCALS~1\Temp\kwecyfod.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwAddBootEntry [0xB62AB9CA]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwAllocateVirtualMemory [0xB65EDA68]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwClose [0xB62CBAF5]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwConnectPort [0xB670A534]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEvent [0xB62ADEAC]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEventPair [0xB62ADF04]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwCreateFile [0xB6704782]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateIoCompletion [0xB62AE01A]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateKey [0xB62CB4A9]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateMutant [0xB62ADE02]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwCreatePort [0xB670ACC0]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwCreateProcess [0xB671DEB4]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwCreateProcessEx [0xB671E2A2]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwCreateSection [0xB6727916]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateSemaphore [0xB62ADE56]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateTimer [0xB62ADFC8]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwCreateWaitablePort [0xB670ADF6]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteBootEntry [0xB62AB9EE]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwDeleteFile [0xB6705398]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteKey [0xB62CC1BB]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteValueKey [0xB62CC471]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwDuplicateObject [0xB671CDF0]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xB62CC026]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xB62CBE91]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwFreeVirtualMemory [0xB65EDB18]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwLoadDriver [0xB62AB7B8]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwLoadKey [0xB672593C]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwLoadKey2 [0xB6725B44]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwModifyBootEntry [0xB62ABA12]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeKey [0xB62AE412]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeMultipleKeys [0xB62AC4AA]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEvent [0xB62ADEDC]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEventPair [0xB62ADF2C]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwOpenFile [0xB6704FAA]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenIoCompletion [0xB62AE044]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenKey [0xB62CB805]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenMutant [0xB62ADE2E]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwOpenProcess [0xB67201CE]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSection [0xB62ADF94]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSemaphore [0xB62ADE84]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwOpenThread [0xB671FDF8]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenTimer [0xB62ADFF2]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwProtectVirtualMemory [0xB65EDBB0]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryKey [0xB62CBD0C]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryObject [0xB62AC370]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryValueKey [0xB62CBB5E]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwRenameKey [0xB65F5E26]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwReplaceKey [0xB6726208]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwRequestWaitReplyPort [0xB670A0F4]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwRestoreKey [0xB62CAB1C]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwSecureConnectPort [0xB670A7DC]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootEntryOrder [0xB62ABA36]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootOptions [0xB62ABA5A]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwSetInformationFile [0xB670575C]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwSetSecurityObject [0xB6726E12]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemInformation [0xB62AB812]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemPowerState [0xB62AB94E]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetValueKey [0xB62CC2C2]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwShutdownSystem [0xB62AB92A]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwSystemDebugControl [0xB671EF0A]
SSDT \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD) ZwTerminateProcess [0xB671EC86]
SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwVdmControl [0xB62ABA7E]

Code BAED7C9C ZwRequestPort
Code BAED7D3C ZwRequestWaitReplyPort
Code BAED7BFC ZwTraceEvent
Code BAED7C9B NtRequestPort
Code BAED7D3B NtRequestWaitReplyPort
Code BAED7BFB NtTraceEvent

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwCallbackReturn + 2C50 805044EC 16 Bytes [AC, DE, 2A, B6, 04, DF, 2A, ...]
.text ntkrnlpa.exe!ZwCallbackReturn + 2C7C 80504518 12 Bytes [C0, AC, 70, B6, B4, DE, 71, ...]
.text ntkrnlpa.exe!ZwCallbackReturn + 2CB8 80504554 12 Bytes [EE, B9, 2A, B6, 98, 53, 70, ...]
.text ntkrnlpa.exe!ZwCallbackReturn + 2D48 805045E4 5 Bytes [B8, B7, 2A, B6, 3C] {MOV EAX, 0x3cb62ab7}
.text ntkrnlpa.exe!ZwCallbackReturn + 2D4E 805045EA 6 Bytes [72, B6, 44, 5B, 72, B6] {JB 0xffffffffffffffb8; INC ESP; POP EBX; JB 0xffffffffffffffbc}
.text ...
.text ntkrnlpa.exe!NtTraceEvent 80535108 5 Bytes JMP BAED7C00
.text D:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB984E360, 0x32DEFD, 0xE8000020]
.text win32k.sys!EngLockSurface + 148C BF834F6F 5 Bytes JMP BAED7700
.text win32k.sys!EngCreateClip + 1F51 BF912F21 5 Bytes JMP BAED7B60
init D:\WINDOWS\System32\Drivers\PEDRV.SYS entry point in "init" section [0xB57D9E00]
? D:\DOCUME~1\NELSON~1\LOCALS~1\Temp\mbr.sys The system cannot find the file specified. !

---- User code sections - GMER 1.0.15 ----

.text D:\WINDOWS\system32\spoolsv.exe[128] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\spoolsv.exe[128] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\spoolsv.exe[128] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\spoolsv.exe[128] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\spoolsv.exe[128] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\spoolsv.exe[128] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\spoolsv.exe[128] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\spoolsv.exe[128] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\spoolsv.exe[128] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\spoolsv.exe[128] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\spoolsv.exe[128] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\spoolsv.exe[128] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\spoolsv.exe[128] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\spoolsv.exe[128] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\spoolsv.exe[128] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\acs.exe[208] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\WINDOWS\system32\acs.exe[208] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\WINDOWS\system32\acs.exe[208] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003E01D4
.text D:\WINDOWS\system32\acs.exe[208] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003E00E4
.text D:\WINDOWS\system32\acs.exe[208] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 003E0120
.text D:\WINDOWS\system32\acs.exe[208] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 003E015C
.text D:\WINDOWS\system32\acs.exe[208] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 003E0198
.text D:\WINDOWS\system32\acs.exe[208] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 003E0030
.text D:\WINDOWS\system32\acs.exe[208] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 003E006C
.text D:\WINDOWS\system32\acs.exe[208] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003E00A8
.text D:\WINDOWS\system32\acs.exe[208] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003F00E4
.text D:\WINDOWS\system32\acs.exe[208] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003F0120
.text D:\WINDOWS\system32\acs.exe[208] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003F00A8
.text D:\WINDOWS\system32\acs.exe[208] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003F0030
.text D:\WINDOWS\system32\acs.exe[208] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003F006C
.text D:\WINDOWS\system32\svchost.exe[260] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\svchost.exe[260] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\svchost.exe[260] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\svchost.exe[260] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\svchost.exe[260] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\svchost.exe[260] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\svchost.exe[260] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\svchost.exe[260] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\svchost.exe[260] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\svchost.exe[260] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\svchost.exe[260] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\svchost.exe[260] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\svchost.exe[260] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\svchost.exe[260] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\svchost.exe[260] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003A00E4
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003A0120
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003A00A8
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003A0030
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe[284] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003A006C
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003A01D4
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003A00E4
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 003A0120
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 003A015C
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 003A0198
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 003A0030
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 003A006C
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003A00A8
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003B00E4
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003B0120
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003B00A8
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003B0030
.text D:\Program Files\Common Files\Java\Java Update\jusched.exe[340] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003B006C
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003A00E4
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003A0120
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003A00A8
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003A0030
.text D:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[344] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003A006C
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003A00E4
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003A0120
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003A00A8
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003A0030
.text D:\Program Files\Bonjour\mDNSResponder.exe[380] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003A006C
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003801D4
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003800E4
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00380120
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0038015C
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00380198
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00380030
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0038006C
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003800A8
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003900E4
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00390120
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003900A8
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00390030
.text D:\Program Files\CA\PPRT\bin\ITMRTSVC.exe[428] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0039006C
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003A00E4
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003A0120
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003A00A8
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003A0030
.text D:\Program Files\Java\jre6\bin\jqs.exe[448] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003A006C
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003801D4
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003800E4
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00380120
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0038015C
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00380198
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00380030
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0038006C
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003800A8
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003900E4
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00390120
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003900A8
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00390030
.text D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe[548] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0039006C
.text D:\WINDOWS\system32\nvsvc32.exe[592] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\WINDOWS\system32\nvsvc32.exe[592] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\WINDOWS\system32\nvsvc32.exe[592] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003800E4
.text D:\WINDOWS\system32\nvsvc32.exe[592] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00380120
.text D:\WINDOWS\system32\nvsvc32.exe[592] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003800A8
.text D:\WINDOWS\system32\nvsvc32.exe[592] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00380030
.text D:\WINDOWS\system32\nvsvc32.exe[592] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0038006C
.text D:\WINDOWS\system32\nvsvc32.exe[592] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\WINDOWS\system32\nvsvc32.exe[592] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\WINDOWS\system32\nvsvc32.exe[592] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\WINDOWS\system32\nvsvc32.exe[592] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\WINDOWS\system32\nvsvc32.exe[592] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\WINDOWS\system32\nvsvc32.exe[592] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\WINDOWS\system32\nvsvc32.exe[592] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\WINDOWS\system32\nvsvc32.exe[592] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00080030
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0008006C
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002C01D4
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002C00E4
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002C0120
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002C015C
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002C0198
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002C0030
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002C006C
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] ADVAPI32.dll!DeleteService 77E374B1 5

 

Bytes JMP 002C00A8
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002D00E4
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002D0120
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002D00A8
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002D0030
.text D:\Program Files\Sandboxie\SbieSvc.exe[644] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002D006C
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002D01D4
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002D00E4
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002D0120
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002D015C
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002D0198
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002D0030
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002D006C
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002D00A8
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002E00E4
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002E0120
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002E00A8
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002E0030
.text D:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe[668] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002E006C
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003A01D4
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003A00E4
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 003A0120
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 003A015C
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 003A0198
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 003A0030
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 003A006C
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003A00A8
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003B00E4
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003B0120
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003B00A8
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003B0030
.text D:\Program Files\Secunia\PSI\PSIA.exe[752] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003B006C
.text D:\WINDOWS\system32\svchost.exe[884] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\svchost.exe[884] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\svchost.exe[884] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\svchost.exe[884] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\svchost.exe[884] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\svchost.exe[884] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\svchost.exe[884] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\svchost.exe[884] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\svchost.exe[884] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\svchost.exe[884] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\svchost.exe[884] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\svchost.exe[884] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\svchost.exe[884] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\svchost.exe[884] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\svchost.exe[884] USER32.dll!UnhookWinEvent
7E4318AC 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\wdfmgr.exe[900] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00080030
.text D:\WINDOWS\system32\wdfmgr.exe[900] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0008006C
.text D:\WINDOWS\system32\wdfmgr.exe[900] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002C01D4
.text D:\WINDOWS\system32\wdfmgr.exe[900] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\wdfmgr.exe[900] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\wdfmgr.exe[900] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002C015C
.text D:\WINDOWS\system32\wdfmgr.exe[900] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002C0198
.text D:\WINDOWS\system32\wdfmgr.exe[900] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\wdfmgr.exe[900] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\wdfmgr.exe[900] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\wdfmgr.exe[900] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002D00E4
.text D:\WINDOWS\system32\wdfmgr.exe[900] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002D0120
.text D:\WINDOWS\system32\wdfmgr.exe[900] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002D00A8
.text D:\WINDOWS\system32\wdfmgr.exe[900] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002D0030
.text D:\WINDOWS\system32\wdfmgr.exe[900] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002D006C
.text D:\WINDOWS\system32\winlogon.exe[940] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00070030
.text D:\WINDOWS\system32\winlogon.exe[940] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0007006C
.text D:\WINDOWS\system32\winlogon.exe[940] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\winlogon.exe[940] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\winlogon.exe[940] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\winlogon.exe[940] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\winlogon.exe[940] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\winlogon.exe[940] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\winlogon.exe[940] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\winlogon.exe[940] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\winlogon.exe[940] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\winlogon.exe[940] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\winlogon.exe[940] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\winlogon.exe[940] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\winlogon.exe[940] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\services.exe[984] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\services.exe[984] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\services.exe[984] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\services.exe[984] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\services.exe[984] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\services.exe[984] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\services.exe[984] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\services.exe[984] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\services.exe[984] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\services.exe[984] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\services.exe[984] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\services.exe[984] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\services.exe[984] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\services.exe[984] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\services.exe[984] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\lsass.exe[1020] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\lsass.exe[1020] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\lsass.exe[1020] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\lsass.exe[1020] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\lsass.exe[1020] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\lsass.exe[1020] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\lsass.exe[1020] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\lsass.exe[1020] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\lsass.exe[1020] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\lsass.exe[1020] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\lsass.exe[1020] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\lsass.exe[1020] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\lsass.exe[1020] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\lsass.exe[1020] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\lsass.exe[1020] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\svchost.exe[1160] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\svchost.exe[1160] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\svchost.exe[1160] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\svchost.exe[1160] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\svchost.exe[1160] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\svchost.exe[1160] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\svchost.exe[1160] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\svchost.exe[1160] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\svchost.exe[1160] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\svchost.exe[1160] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\svchost.exe[1160] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\svchost.exe[1160] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\svchost.exe[1160] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\svchost.exe[1160] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\svchost.exe[1160] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00080030
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0008006C
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002C01D4
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002C00E4
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002C0120
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002C015C
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002C0198
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002C0030
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002C006C
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002C00A8
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002D00E4
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002D0120
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002D00A8
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002D0030
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[1176] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002D006C
.text D:\WINDOWS\system32\svchost.exe[1216] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\svchost.exe[1216] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\svchost.exe[1216] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4

 

.text D:\WINDOWS\system32\svchost.exe[1216] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\svchost.exe[1216] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\svchost.exe[1216] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\svchost.exe[1216] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\svchost.exe[1216] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\svchost.exe[1216] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\svchost.exe[1216] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\svchost.exe[1216] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\svchost.exe[1216] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\svchost.exe[1216] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\svchost.exe[1216] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\svchost.exe[1216] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002F01D4
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002F00E4
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002F0120
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002F015C
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002F0198
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002F0030
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002F006C
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002F00A8
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003000E4
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00300120
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003000A8
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00300030
.text D:\Program Files\Windows Defender\MsMpEng.exe[1256] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0030006C
.text D:\WINDOWS\System32\svchost.exe[1296] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\System32\svchost.exe[1296] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\System32\svchost.exe[1296] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\System32\svchost.exe[1296] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\System32\svchost.exe[1296] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\System32\svchost.exe[1296] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\System32\svchost.exe[1296] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\System32\svchost.exe[1296] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\System32\svchost.exe[1296] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\System32\svchost.exe[1296] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\System32\svchost.exe[1296] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\System32\svchost.exe[1296] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\System32\svchost.exe[1296] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\System32\svchost.exe[1296] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\System32\svchost.exe[1296] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 004501D4
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 004500E4
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00450120
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0045015C
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00450198
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00450030
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0045006C
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 004500A8
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 004600E4
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00460120
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 004600A8
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00460030
.text D:\Program Files\Windows Live\Toolbar\wltuser.exe[1364] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0046006C
.text D:\WINDOWS\system32\svchost.exe[1408] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\svchost.exe[1408] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\svchost.exe[1408] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\svchost.exe[1408] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\svchost.exe[1408] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\svchost.exe[1408] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\svchost.exe[1408] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\svchost.exe[1408] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\svchost.exe[1408] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\svchost.exe[1408] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\svchost.exe[1408] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\svchost.exe[1408] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\svchost.exe[1408] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\svchost.exe[1408] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\svchost.exe[1408] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\svchost.exe[1440] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\svchost.exe[1440] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\svchost.exe[1440] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B01D4
.text D:\WINDOWS\system32\svchost.exe[1440] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B00E4
.text D:\WINDOWS\system32\svchost.exe[1440] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0120
.text D:\WINDOWS\system32\svchost.exe[1440] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002B015C
.text D:\WINDOWS\system32\svchost.exe[1440] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002B0198
.text D:\WINDOWS\system32\svchost.exe[1440] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002B0030
.text D:\WINDOWS\system32\svchost.exe[1440] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002B006C
.text D:\WINDOWS\system32\svchost.exe[1440] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002B00A8
.text D:\WINDOWS\system32\svchost.exe[1440] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\svchost.exe[1440] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\svchost.exe[1440] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\svchost.exe[1440] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\svchost.exe[1440] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 3 Bytes JMP 003C01D4
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!SetServiceObjectSecurity + 4 77E36D85 1 Byte [88]
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003C00E4
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 003C0120
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 003C015C
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 003C0198
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 003C0030
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 003C006C
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003C00A8
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003D00E4
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003D0120
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003D00A8
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003D0030
.text D:\WINDOWS\system32\ZoneLabs\vsmon.exe[1480] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003D006C
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 00C001D4
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 00C000E4
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00C00120
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 00C0015C
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00C00198
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00C00030
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 00C0006C
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\dds.scr[1496] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 00C000A8
.text D:\Program Files\internet explorer\iexplore.exe[1512] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\internet explorer\iexplore.exe[1512] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\internet explorer\iexplore.exe[1512] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\internet explorer\iexplore.exe[1512] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\internet explorer\iexplore.exe[1512] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\internet explorer\iexplore.exe[1512] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\internet explorer\iexplore.exe[1512] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\internet explorer\iexplore.exe[1512] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\internet explorer\iexplore.exe[1512] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\internet explorer\iexplore.exe[1512] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!DialogBoxParamW 7E4247AB 5 Bytes JMP 3E1DF4B9 D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003A00E4
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003A0120
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003A00A8
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003A0030
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003A006C
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!DialogBoxIndirectParamW 7E432072 5 Bytes JMP 3E351F8F D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!MessageBoxIndirectA 7E43A082 5 Bytes JMP 3E351F10 D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!DialogBoxParamA 7E43B144 5 Bytes JMP 3E351F54 D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!MessageBoxExW 7E450838 5 Bytes JMP 3E351E9C D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!MessageBoxExA 7E45085C 5 Bytes JMP 3E351ED6 D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!DialogBoxIndirectParamA 7E456D7D 5 Bytes JMP 3E351FCA D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] USER32.dll!MessageBoxIndirectW 7E4664D5 5 Bytes JMP 3E2017EA D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] ole32.dll!OleLoadFromStream 77529C85 5 Bytes JMP 3E35218C D:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] WS2_32.dll!getaddrinfo 71AB2A6F 5 Bytes JMP 46CB1037 D:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] WS2_32.dll!closesocket 71AB3E2B 5 Bytes JMP 46CB1895 D:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] WS2_32.dll!socket 71AB4211 5 Bytes JMP 46CB0EA6 D:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] WS2_32.dll!connect 71AB4A07 5 Bytes JMP 46CB0F36 D:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] WS2_32.dll!send 71AB4C27 5 Bytes JMP 46CB130D D:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
.text D:\Program Files\internet explorer\iexplore.exe[1512] WS2_32.dll!recv 71AB676F 5 Bytes JMP 46CB1B86 D:\Program Files\Microsoft\Search Enhancement Pack\SeaNote\SeaNote.dll (Microsoft Search Note/Microsoft Corporation)
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 3 Bytes JMP 003C01D4
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!SetServiceObjectSecurity + 4 77E36D85 1 Byte [88]
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003C00E4
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 003C0120
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 003C015C
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 003C0198
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 003C0030
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 003C006C
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003C00A8
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003D00E4
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003D0120
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003D00A8
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003D0030
.text D:\Program Files\Lavasoft\Ad-Aware\aawservice.exe[1792] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003D006C
.text D:\Program Files\AVAST Software\Avast\AvastSvc.exe[1856] kernel32.dll!SetUnhandledExceptionFilter 7C84495D 4 Bytes [C2, 04, 00, 90] {RET 0x4; NOP }
.text D:\WINDOWS\System32\alg.exe[2156] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\System32\alg.exe[2156] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\System32\alg.exe[2156] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002B00E4
.text D:\WINDOWS\System32\alg.exe[2156] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002B0120
.text D:\WINDOWS\System32\alg.exe[2156] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002B00A8
.text D:\WINDOWS\System32\alg.exe[2156] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002B0030
.text D:\WINDOWS\System32\alg.exe[2156] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002B006C
.text D:\WINDOWS\System32\alg.exe[2156] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002C01D4
.text D:\WINDOWS\System32\alg.exe[2156] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002C00E4
.text D:\WINDOWS\System32\alg.exe[2156] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002C0120
.text D:\WINDOWS\System32\alg.exe[2156] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002C015C
.text D:\WINDOWS\System32\alg.exe[2156] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002C0198
.text D:\WINDOWS\System32\alg.exe[2156] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002C0030
.text D:\WINDOWS\System32\alg.exe[2156] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002C006C
.text D:\WINDOWS\System32\alg.exe[2156] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002C00A8
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003A00E4
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003A0120
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003A00A8
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003A0030
.text D:\Program Files\iTunes\iTunesHelper.exe[2280] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003A006C
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00080030
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0008006C
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002C01D4
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002C00E4
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002C0120
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002C015C
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002C0198
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002C0030
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002C006C
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002C00A8
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002D00E4
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002D0120
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002D00A8
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002D0030
.text D:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe[2312] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002D006C
.text D:\WINDOWS\system32\taskmgr.exe[2508] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 000B0030
.text D:\WINDOWS\system32\taskmgr.exe[2508] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 000B006C
.text D:\WINDOWS\system32\taskmgr.exe[2508] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002D01D4
.text D:\WINDOWS\system32\taskmgr.exe[2508] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002D00E4
.text D:\WINDOWS\system32\taskmgr.exe[2508] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002D0120
.text D:\WINDOWS\system32\taskmgr.exe[2508] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002D015C
.text D:\WINDOWS\system32\taskmgr.exe[2508] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002D0198
.text D:\WINDOWS\system32\taskmgr.exe[2508] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002D0030
.text D:\WINDOWS\system32\taskmgr.exe[2508] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002D006C
.text D:\WINDOWS\system32\taskmgr.exe[2508] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002D00A8
.text D:\WINDOWS\system32\taskmgr.exe[2508] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002E00E4
.text D:\WINDOWS\system32\taskmgr.exe[2508] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002E0120
.text D:\WINDOWS\system32\taskmgr.exe[2508] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002E00A8
.text D:\WINDOWS\system32\taskmgr.exe[2508] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002E0030
.text D:\WINDOWS\system32\taskmgr.exe[2508] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002E006C
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003A01D4
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003A00E4
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 003A0120
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 003A015C
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 003A0198
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 003A0030
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 003A006C
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003A00A8
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003B00E4
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003B0120
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003B00A8
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003B0030
.text D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe[2568] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003B006C
.text D:\WINDOWS\Explorer.EXE[2712] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\Explorer.EXE[2712] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\Explorer.EXE[2712] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002C01D4
.text D:\WINDOWS\Explorer.EXE[2712] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002C00E4
.text D:\WINDOWS\Explorer.EXE[2712] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002C0120
.text D:\WINDOWS\Explorer.EXE[2712] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002C015C
.text D:\WINDOWS\Explorer.EXE[2712] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002C0198
.text D:\WINDOWS\Explorer.EXE[2712] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002C0030
.text D:\WINDOWS\Explorer.EXE[2712] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002C006C
.text D:\WINDOWS\Explorer.EXE[2712] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002C00A8
.text D:\WINDOWS\Explorer.EXE[2712] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002D00E4
.text D:\WINDOWS\Explorer.EXE[2712] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002D0120
.text D:\WINDOWS\Explorer.EXE[2712] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002D00A8
.text D:\WINDOWS\Explorer.EXE[2712] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002D0030
.text D:\WINDOWS\Explorer.EXE[2712] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002D006C
.text D:\WINDOWS\system32\ctfmon.exe[2724] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 000A0030
.text D:\WINDOWS\system32\ctfmon.exe[2724] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 000A006C
.text D:\WINDOWS\system32\ctfmon.exe[2724] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002C01D4
.text D:\WINDOWS\system32\ctfmon.exe[2724] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002C00E4
.text D:\WINDOWS\system32\ctfmon.exe[2724] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002C0120
.text D:\WINDOWS\system32\ctfmon.exe[2724] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002C015C
.text D:\WINDOWS\system32\ctfmon.exe[2724] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002C0198
.text D:\WINDOWS\system32\ctfmon.exe[2724] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002C0030
.text D:\WINDOWS\system32\ctfmon.exe[2724] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002C006C
.text D:\WINDOWS\system32\ctfmon.exe[2724] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002C00A8
.text D:\WINDOWS\system32\ctfmon.exe[2724] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002D00E4
.text D:\WINDOWS\system32\ctfmon.exe[2724] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002D0120
.text D:\WINDOWS\system32\ctfmon.exe[2724] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002D00A8
.text D:\WINDOWS\system32\ctfmon.exe[2724] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002D0030
.text D:\WINDOWS\system32\ctfmon.exe[2724] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002D006C
.text D:\WINDOWS\system32\wscntfy.exe[2788] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\WINDOWS\system32\wscntfy.exe[2788] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\WINDOWS\system32\wscntfy.exe[2788] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002D00E4
.text D:\WINDOWS\system32\wscntfy.exe[2788] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002D0120
.text D:\WINDOWS\system32\wscntfy.exe[2788] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002D00A8
.text D:\WINDOWS\system32\wscntfy.exe[2788] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002D0030
.text D:\WINDOWS\system32\wscntfy.exe[2788] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002D006C
.text D:\WINDOWS\system32\wscntfy.exe[2788] ADVAPI32.dll!

 

SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002E01D4
.text D:\WINDOWS\system32\wscntfy.exe[2788] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002E00E4
.text D:\WINDOWS\system32\wscntfy.exe[2788] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002E0120
.text D:\WINDOWS\system32\wscntfy.exe[2788] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002E015C
.text D:\WINDOWS\system32\wscntfy.exe[2788] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002E0198
.text D:\WINDOWS\system32\wscntfy.exe[2788] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002E0030
.text D:\WINDOWS\system32\wscntfy.exe[2788] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002E006C
.text D:\WINDOWS\system32\wscntfy.exe[2788] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002E00A8
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003A00E4
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003A0120
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003A00A8
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003A0030
.text D:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe[2836] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003A006C
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003800E4
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00380120
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003800A8
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00380030
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0038006C
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe[2944] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003800E4
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00380120
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003800A8
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00380030
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0038006C
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe[2948] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00090030
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0009006C
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002D01D4
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002D00E4
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002D0120
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002D015C
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002D0198
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002D0030
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002D006C
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002D00A8
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002E00E4
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002E0120
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002E00A8
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002E0030
.text D:\Program Files\MSN Toolbar\Platform\4.0.0417.0\mswinext.exe[3020] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002E006C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003800E4
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00380120
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003800A8
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00380030
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0038006C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030

 

.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe[3384] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003F00E4
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003F0120
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003F00A8
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003F0030
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003F006C
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 004E01D4
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 004E00E4
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 004E0120
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 004E015C
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 004E0198
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 004E0030
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 004E006C
.text D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe[3440] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 004E00A8
.text D:\WINDOWS\system32\cmd.exe[3544] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\WINDOWS\system32\cmd.exe[3544] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\WINDOWS\system32\cmd.exe[3544] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003800E4
.text D:\WINDOWS\system32\cmd.exe[3544] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00380120
.text D:\WINDOWS\system32\cmd.exe[3544] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003800A8
.text D:\WINDOWS\system32\cmd.exe[3544] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00380030
.text D:\WINDOWS\system32\cmd.exe[3544] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0038006C
.text D:\WINDOWS\system32\cmd.exe[3544] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 008D01D4
.text D:\WINDOWS\system32\cmd.exe[3544] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 008D00E4
.text D:\WINDOWS\system32\cmd.exe[3544] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 008D0120
.text D:\WINDOWS\system32\cmd.exe[3544] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 008D015C
.text D:\WINDOWS\system32\cmd.exe[3544] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 008D0198
.text D:\WINDOWS\system32\cmd.exe[3544] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 008D0030
.text D:\WINDOWS\system32\cmd.exe[3544] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 008D006C
.text D:\WINDOWS\system32\cmd.exe[3544] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 008D00A8
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\iPod\bin\iPodService.exe[3560] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\iPod\bin\iPodService.exe[3560] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003A00E4
.text D:\Program Files\iPod\bin\iPodService.exe[3560] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 003A0120
.text D:\Program Files\iPod\bin\iPodService.exe[3560] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003A00A8
.text D:\Program Files\iPod\bin\iPodService.exe[3560] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 003A0030
.text D:\Program Files\iPod\bin\iPodService.exe[3560] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 003A006C
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003900E4
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00390120
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003900A8
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00390030
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0039006C
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003A01D4
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003A00E4
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 003A0120
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 003A015C
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 003A0198
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 003A0030
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 003A006C
.text D:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe[3564] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003A00A8
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003F01D4
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003F00E4
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 003F0120
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 003F015C
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 003F0198
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 003F0030
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 003F006C
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003F00A8
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 005800E4
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00580120
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 005800A8
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00580030
.text D:\Program Files\NETGEAR\WN111v2\WN111V2.exe[3604] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0058006C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00140030
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0014006C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 003800E4
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00380120
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 003800A8
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00380030
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 0038006C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe[3636] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00080030
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0008006C
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002D01D4
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002D00E4
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002D0120
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 002D015C
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 002D0198
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 002D0030
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 002D006C
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 002D00A8
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 002E00E4
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 002E0120
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 002E00A8
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 002E0030
.text D:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe[3660] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 002E006C
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\GMER.exe[3976] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\GMER.exe[3976] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\GMER.exe[3976] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 00CA00E4
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\GMER.exe[3976] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 00CA0120
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\GMER.exe[3976] USER32.dll!SetWindowsHookExA 7E431211 5 Bytes JMP 00CA00A8
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\GMER.exe[3976] USER32.dll!SetWinEventHook 7E4317F7 5 Bytes JMP 00CA0030
.text D:\Documents and Settings\Nelson Ramon Arucas\Desktop\GMER.exe[3976] USER32.dll!UnhookWinEvent 7E4318AC 5 Bytes JMP 00CA006C
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 00150030
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ntdll.dll!LdrUnloadDll 7C91738B 5 Bytes JMP 0015006C
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 003901D4
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 003900E4
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 00390120
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ADVAPI32.dll!ChangeServiceConfig2A 77E37101 5 Bytes JMP 0039015C
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ADVAPI32.dll!ChangeServiceConfig2W 77E37189 5 Bytes JMP 00390198
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ADVAPI32.dll!CreateServiceA 77E37211 5 Bytes JMP 00390030
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ADVAPI32.dll!CreateServiceW 77E373A9 5 Bytes JMP 0039006C
.text D:\Program Files\Secunia\PSI\sua.exe[4064] ADVAPI32.dll!DeleteService 77E374B1 5 Bytes JMP 003900A8

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisRegisterProtocol] [B670F672] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisOpenAdapter] [B670F4C8] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisCloseAdapter] [B670FCBA] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisDeregisterProtocol] [B670DC2A] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisDeregisterProtocol] [B670DC2A] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisRegisterProtocol] [B670F672] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisOpenAdapter] [B670F4C8] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisCloseAdapter] [B670FCBA] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisRegisterProtocol] [B670F672] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisDeregisterProtocol] [B670DC2A] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisCloseAdapter] [B670FCBA] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisOpenAdapter] [B670F4C8] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisCloseAdapter] [B670FCBA] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisOpenAdapter] [B670F4C8] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisRegisterProtocol] [B670F672] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisDeregisterProtocol] [B670DC2A] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisRegisterProtocol] [B670F672] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisOpenAdapter] [B670F4C8] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisCloseAdapter] [B670FCBA] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisRegisterProtocol] [B670F672] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisDeregisterProtocol] [B670DC2A] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisCloseAdapter] [B670FCBA] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisOpenAdapter] [B670F4C8] \SystemRoot\System32\vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)

---- User IAT/EAT - GMER 1.0.15 ----

IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program

 

Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\WININET.dll [ADVAPI32.dll!CreateProcessAsUserA] [10010380] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[260] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[884] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\winlogon.exe [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\winlogon.exe [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)

 

IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\winlogon.exe[940] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\services.exe [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\services.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\services.exe [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\services.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\services.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\services.exe [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\services.exe[984] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program

 

Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\rpcss.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1160] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\rpcss.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\rpcss.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1216] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\System32\svchost.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)

 

IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\WININET.dll [ADVAPI32.dll!CreateProcessAsUserA] [10010380] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\System32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\System32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\System32\svchost.exe[1296] @ D:\WINDOWS\System32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1408] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program

 

Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ d:\windows\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\svchost.exe[1440] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WININET.dll [ADVAPI32.dll!CreateProcessAsUserA] [10010380] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\Program Files\internet explorer\iexplore.exe[1512] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [10010740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [1000FD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [10010560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [1000FB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [10010910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100101B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [1000FFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] [1000FA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\system32\taskmgr.exe[2508] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [1000F890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\Explorer.EXE [KERNEL32.dll!LoadLibraryExA] [021DFB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\Explorer.EXE [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\Explorer.EXE [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\Explorer.EXE [KERNEL32.dll!CreateProcessW] [021E0910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\Explorer.EXE [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\Explorer.EXE [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\Explorer.EXE [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] [021E0910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)

 

IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] [021E0740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] [021E0910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [021DFB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] [021E0910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [021DFB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] [021E0740] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] [021E0910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] [021DFB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WININET.dll [ADVAPI32.dll!CreateProcessAsUserA] [021E0380] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WININET.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHELL32.dll [ADVAPI32.dll!CreateProcessAsUserW] [021E0560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] [021E0910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [021DFD90] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [021DFB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USERENV.dll [ADVAPI32.dll!CreateProcessAsUserW] [021E0560] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [021E01B0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [021DFB40] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!CreateProcessW] [021E0910] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] [021DFA00] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [021DFFE0] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)
IAT D:\WINDOWS\Explorer.EXE[2712] @ D:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [021DF890] D:\Program Files\CA\PPRT\bin\CACheck.dll (API interceptors/CA, Inc.)

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)

Device \Driver\Tcpip \Device\Ip vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)

AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

Device \Driver\Tcpip \Device\Tcp vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)

AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

Device \Driver\Tcpip \Device\Udp vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)

AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

Device \Driver\Tcpip \Device\RawIp vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)

AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

Device \Driver\Tcpip \Device\IPMULTICAST vsdatant.sys (ZoneAlarm Firewalling Driver/Check Point Software Technologies LTD)

AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)

---- EOF - GMER 1.0.15 ----

 

GMER file was almost 400k characters. The 55k character limit is why I had to break up that log file into many parts.

 

I have to also add one thing that I forgot to add in the initial post for this thread. When this time I had to uninstall the avast antivirus, there was an error when I ran the avast setup exe file to uninstall avast at the time. I made sure to go into the settings of avast and uncheck the self defence feature under troubleshooting section. I do not know why this error occured, but I then deleted that avast setup exe file and then downloaded a new avast setup file to uninstall and reinstall avast.

 

I removed "Java(TM) 6 Update 5" from going into my control panel, and seeing that specific one in the list of "add or remove programs ". I did not see the "Java(TM) 6 Update 7" within the same list. the C: is the backup portion of my drive within my room pc. The main, "local disk" is D: drive.

Whats the next thing I should do?