Sorry für den Doppelpost, aber GMER hat in den ersten Beitrag nicht mehr reingepasst und als Anlage war es zu groß :(
Ich wünsche allen ein schönes Wochenende und schon einmal Danke Arne! Code:
GMER 1.0.15.15530 - hxxp://www.gmer.net
Rootkit scan 2011-02-04 14:46:37
Windows 6.1.7600 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 Hitachi_HTS542525K9SA00 rev.BBFOC33P
Running: cx9portj.exe; Driver: C:\Users\Robert\AppData\Local\Temp\kwroqfow.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwAllocateVirtualMemory [0x8C7BA728]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwFreeVirtualMemory [0x8C7BA7D8]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwProtectVirtualMemory [0x8C7BA870]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0x8C7CE82E]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateSection [0x8C7CE652]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwLoadDriver [0x8C7CE78C]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) NtCreateSection
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject
---- Kernel code sections - GMER 1.0.15 ----
.text ntkrnlpa.exe!ZwSaveKeyEx + 13AD 8305A599 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 8307EF52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text ntkrnlpa.exe!RtlSidHashLookup + 23C 8308674C 4 Bytes [28, A7, 7B, 8C]
.text ntkrnlpa.exe!RtlSidHashLookup + 3FC 8308690C 4 Bytes [D8, A7, 7B, 8C]
.text ntkrnlpa.exe!RtlSidHashLookup + 54C 83086A5C 4 Bytes [70, A8, 7B, 8C] {JO 0xffffffffffffffaa; JNP 0xffffffffffffff90}
PAGE ntkrnlpa.exe!ZwLoadDriver 831B8291 7 Bytes JMP 8C7CE790 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ObMakeTemporaryObject 8321FFBF 5 Bytes JMP 8C7CA1EE \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!ObInsertObject + 27 83239CF3 5 Bytes JMP 8C7CBCA0 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!NtCreateSection 83247D63 2 Bytes JMP 8C7CE656 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
PAGE ntkrnlpa.exe!NtCreateSection + 3 83247D66 4 Bytes [58, 09, CC, CC] {POP EAX; OR ESP, ECX; INT 3 }
PAGE ntkrnlpa.exe!ZwCreateProcessEx 832F1EAC 7 Bytes JMP 8C7CE832 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software)
? System32\Drivers\sppp.sys Das System kann den angegebenen Pfad nicht finden. !
PAGE ataport.SYS!DllUnload + 1 8C084AD7 4 Bytes JMP 85B421D9
.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x92A13000, 0x2D5378, 0xE8000020]
.text USBPORT.SYS!DllUnload 931CECA0 5 Bytes JMP 86E1E4E0
.text a7nmkmsd.SYS 92F97000 12 Bytes [44, C8, 42, 83, EE, C6, 42, ...]
.text a7nmkmsd.SYS 92F9700D 9 Bytes [A7, 42, 83, 48, CB, 42, 83, ...] {CMPSD ; INC EDX; OR DWORD [EAX-0x35], 0x42; ADD DWORD [EAX], 0x0}
.text a7nmkmsd.SYS 92F97017 20 Bytes [00, DE, 57, F3, 8B, E6, 55, ...]
.text a7nmkmsd.SYS 92F9702C 149 Bytes [00, 00, 00, 00, D0, 51, 05, ...]
.text a7nmkmsd.SYS 92F970C3 8 Bytes [00, 00, 00, 00, 00, 00, 00, ...] {ADD [EAX], AL; ADD [EAX], AL; ADD [EAX], AL; ADD [EAX], AL}
.text ...
.text user32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0
.text user32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text user32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0
.text user32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text user32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30
.text user32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720
.text user32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0
---- User code sections - GMER 1.0.15 ----
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[312] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchFilterHost.exe[316] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchFilterHost.exe[316] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchFilterHost.exe[316] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchFilterHost.exe[316] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\SearchFilterHost.exe[316] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchFilterHost.exe[316] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\SearchFilterHost.exe[316] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchFilterHost.exe[316] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchFilterHost.exe[316] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynToshiba.exe[320] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wininit.exe[452] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wininit.exe[452] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wininit.exe[452] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wininit.exe[452] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\wininit.exe[452] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wininit.exe[452] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\wininit.exe[452] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wininit.exe[452] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wininit.exe[452] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\services.exe[500] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\services.exe[500] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\lsass.exe[532] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\lsass.exe[532] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\lsm.exe[540] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\lsm.exe[540] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\winlogon.exe[576] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\winlogon.exe[576] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\winlogon.exe[576] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\winlogon.exe[576] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\winlogon.exe[576] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\winlogon.exe[576] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\winlogon.exe[576] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\winlogon.exe[576] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\winlogon.exe[576] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[684] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[684] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Java\Java Update\jusched.exe[764] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[780] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[780] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atiesrxx.exe[828] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atiesrxx.exe[828] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atiesrxx.exe[828] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atiesrxx.exe[828] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\atiesrxx.exe[828] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atiesrxx.exe[828] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\atiesrxx.exe[828] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atiesrxx.exe[828] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atiesrxx.exe[828] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[916] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[916] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[916] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[916] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\System32\svchost.exe[916] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[916] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\System32\svchost.exe[916] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[916] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[916] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[964] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[964] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[964] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[964] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\System32\svchost.exe[964] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[964] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\System32\svchost.exe[964] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[964] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[964] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[996] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[996] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[996] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[996] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[996] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[996] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[996] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[996] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[996] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1156] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1156] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1156] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1156] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[1156] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1156] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[1156] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1156] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1156] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atieclxx.exe[1204] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atieclxx.exe[1204] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atieclxx.exe[1204] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atieclxx.exe[1204] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\atieclxx.exe[1204] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atieclxx.exe[1204] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\atieclxx.exe[1204] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atieclxx.exe[1204] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\atieclxx.exe[1204] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe[1284] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe[1364] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1400] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1400] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1400] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1400] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[1400] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1400] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[1400] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1400] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[1400] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Windows Sidebar\sidebar.exe[1592] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe[1620] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe[1672] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iTunes\iTunesHelper.exe[1684] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\Dwm.exe[1700] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\Dwm.exe[1700] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\Dwm.exe[1700] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\Dwm.exe[1700] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\Dwm.exe[1700] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\Dwm.exe[1700] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\Dwm.exe[1700] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\Dwm.exe[1700] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\Dwm.exe[1700] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\Explorer.EXE[1732] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\Explorer.EXE[1732] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\Explorer.EXE[1732] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\Explorer.EXE[1732] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\Explorer.EXE[1732] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\Explorer.EXE[1732] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\Explorer.EXE[1732] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\Explorer.EXE[1732] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\Explorer.EXE[1732] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\vsnpstd3.exe[1948] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\vsnpstd3.exe[1948] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\vsnpstd3.exe[1948] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\vsnpstd3.exe[1948] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\vsnpstd3.exe[1948] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\vsnpstd3.exe[1948] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\vsnpstd3.exe[1948] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\vsnpstd3.exe[1948] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\vsnpstd3.exe[1948] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[1956] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\TOSHIBA\dynadock_II\TosDockApp.exe[1968] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\HP\HP Software Update\hpwuSchd2.exe[1976] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\spoolsv.exe[2344] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\spoolsv.exe[2344] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\spoolsv.exe[2344] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\spoolsv.exe[2344] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\System32\spoolsv.exe[2344] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\spoolsv.exe[2344] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\System32\spoolsv.exe[2344] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\spoolsv.exe[2344] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\spoolsv.exe[2344] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2352] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2352] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2352] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2352] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\taskeng.exe[2352] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2352] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\taskeng.exe[2352] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2352] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2352] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskhost.exe[2388] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskhost.exe[2388] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskhost.exe[2388] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskhost.exe[2388] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\taskhost.exe[2388] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskhost.exe[2388] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\taskhost.exe[2388] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskhost.exe[2388] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskhost.exe[2388] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2400] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2400] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2400] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2400] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[2400] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2400] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[2400] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2400] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2400] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\rundll32.exe[2476] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\rundll32.exe[2476] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\rundll32.exe[2476] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\rundll32.exe[2476] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\rundll32.exe[2476] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\rundll32.exe[2476] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\rundll32.exe[2476] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\rundll32.exe[2476] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\rundll32.exe[2476] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[2572] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2584] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2584] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2584] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2584] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\taskeng.exe[2584] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2584] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\taskeng.exe[2584] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2584] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\taskeng.exe[2584] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe[2644] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Bonjour\mDNSResponder.exe[2748] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2780] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2780] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2820] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[2820] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\ICQ6Toolbar\ICQ Service.exe[2848] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[2904] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[2904] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[2996] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\System32\svchost.exe[2996] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe[3020] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3056] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3056] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\Splashtop\Splashtop Remote Software Updater\WCUService.exe[3088] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchProtocolHost.exe[3156] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchProtocolHost.exe[3156] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchProtocolHost.exe[3156] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchProtocolHost.exe[3156] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\SearchProtocolHost.exe[3156] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchProtocolHost.exe[3156] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\SearchProtocolHost.exe[3156] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchProtocolHost.exe[3156] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchProtocolHost.exe[3156] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\wbem\wmiprvse.exe[3284] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3448] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3448] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3448] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3448] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[3448] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3448] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\svchost.exe[3448] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3448] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\svchost.exe[3448] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iPod\bin\iPodService.exe[3488] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iPod\bin\iPodService.exe[3488] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iPod\bin\iPodService.exe[3488] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iPod\bin\iPodService.exe[3488] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Program Files\iPod\bin\iPodService.exe[3488] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iPod\bin\iPodService.exe[3488] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Program Files\iPod\bin\iPodService.exe[3488] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iPod\bin\iPodService.exe[3488] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Program Files\iPod\bin\iPodService.exe[3488] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchIndexer.exe[3696] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchIndexer.exe[3696] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchIndexer.exe[3696] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchIndexer.exe[3696] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\SearchIndexer.exe[3696] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchIndexer.exe[3696] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\SearchIndexer.exe[3696] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchIndexer.exe[3696] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\SearchIndexer.exe[3696] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\WUDFHost.exe[4060] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\WUDFHost.exe[4060] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\WUDFHost.exe[4060] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\WUDFHost.exe[4060] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Windows\system32\WUDFHost.exe[4060] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\WUDFHost.exe[4060] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Windows\system32\WUDFHost.exe[4060] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\WUDFHost.exe[4060] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Windows\system32\WUDFHost.exe[4060] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] ntdll.dll!LdrUnloadDll 777FBF1F 5 Bytes JMP 64D069B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] ntdll.dll!LdrLoadDll 777FF625 5 Bytes JMP 64D06950 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] USER32.dll!UnhookWindowsHookEx 75CFCC7B 3 Bytes JMP 64D0BCB0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] USER32.dll!UnhookWindowsHookEx + 4 75CFCC7F 1 Byte [EF]
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] USER32.dll!UnhookWinEvent 75CFD924 3 Bytes JMP 64D0B8A0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] USER32.dll!UnhookWinEvent + 4 75CFD928 1 Byte [EF]
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] USER32.dll!SetWindowsHookExW 75D0210A 5 Bytes JMP 64D0BB30 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] USER32.dll!SetWinEventHook 75D0507E 5 Bytes JMP 64D0B720 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
.text C:\Users\Robert\Desktop\cx9portj.exe[4376] USER32.dll!SetWindowsHookExA 75D26DFA 5 Bytes JMP 64D0B9B0 C:\Program Files\Alwil Software\Avast5\snxhk.dll (avast! snxhk/AVAST Software)
---- Kernel IAT/EAT - GMER 1.0.15 ----
IAT \SystemRoot\system32\DRIVERS\atapi.sys[ataport.SYS!AtaPortReadPortUchar] [8BE39042] \SystemRoot\System32\Drivers\sppp.sys
IAT \SystemRoot\system32\DRIVERS\atapi.sys[ataport.SYS!AtaPortWritePortUchar] [8BE396D6] \SystemRoot\System32\Drivers\sppp.sys
IAT \SystemRoot\system32\DRIVERS\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort] [8BE39800] \SystemRoot\System32\Drivers\sppp.sys
IAT \SystemRoot\system32\DRIVERS\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort] [8BE3913E] \SystemRoot\System32\Drivers\sppp.sys
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortNotification] 00147880
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortQuerySystemTime] 78800C75
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortReadPortUchar] 06750015
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortStallExecution] C25DC033
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortWritePortUchar] 458B0008
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortWritePortUlong] 6A006A08
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortGetPhysicalAddress] 50056A24
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortConvertPhysicalAddressToUlong] 005AB7E8
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortGetScatterGatherList] 0001B800
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortGetParentBusType] C25D0000
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortRequestCallback] CCCC0008
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortWritePortBufferUshort] CCCCCCCC
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortGetUnCachedExtension] CCCCCCCC
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortCompleteRequest] CCCCCCCC
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortCopyMemory] 53EC8B55
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortEtwTraceLog] 800C5D8B
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortCompleteAllActiveRequests] 7500117B
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortReleaseRequestSenseIrb] 127B806A
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortBuildRequestSenseIrb] 80647500
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortReadPortBufferUshort] 7500137B
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortInitialize] 157B805E
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortGetDeviceBase] 56587500
IAT \SystemRoot\System32\Drivers\a7nmkmsd.SYS[ataport.SYS!AtaPortDeviceStateChange] 8008758B
---- User IAT/EAT - GMER 1.0.15 ----
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [74212494] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [741F5624] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [741F56E2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [7421250F] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [74208573] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [74204D27] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [742050CE] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [742051A3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromHBITMAP] [742066D0] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [742082CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [74208819] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [7420907A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [7420E21D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1732] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [74204C59] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] @ C:\Windows\system32\secur32.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe[1916] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Windows\system32\rundll32.exe[2476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Windows\system32\rundll32.exe[2476] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Windows\system32\rundll32.exe[2476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
IAT C:\Windows\system32\rundll32.exe[2476] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75845E25] C:\Windows\system32\apphelp.dll (Clientbibliothek für Anwendungskompatibilität/Microsoft Corporation)
---- Devices - GMER 1.0.15 ----
Device \FileSystem\Ntfs \Ntfs 867DF1F8
Device \Driver\sptd \Device\3732450280 sppp.sys
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Kernelmodustreiber-Frameworklaufzeit/Microsoft Corporation)
Device \Driver\volmgr \Device\VolMgrControl 85B441F8
Device \Driver\NetBT \Device\NetBT_Tcpip_{A4E30E05-8018-4FB8-B24C-232E95FE5BE7} 86CB91F8
Device \Driver\usbohci \Device\USBPDO-0 86E1F1F8
Device \Driver\usbohci \Device\USBPDO-1 86E1F1F8
Device \Driver\NetBT \Device\NetBT_Tcpip_{32B466E9-CD9C-4600-B614-A2C10CEB9170} 86CB91F8
Device \Driver\usbohci \Device\USBPDO-2 86E1F1F8
Device \Driver\usbohci \Device\USBPDO-3 86E1F1F8
Device \Driver\usbohci \Device\USBPDO-4 86E1F1F8
AttachedDevice \Driver\tdx \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
Device \Driver\usbehci \Device\USBPDO-5 86E231F8
Device \Driver\volmgr \Device\HarddiskVolume1 85B441F8
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
Device \Driver\volmgr \Device\HarddiskVolume2 85B441F8
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
Device \Driver\cdrom \Device\CdRom0 86CD51F8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 85B461F8
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-3 85B461F8
Device \Driver\atapi \Device\Ide\IdePort0 85B461F8
Device \Driver\atapi \Device\Ide\IdePort1 85B461F8
Device \Driver\atapi \Device\Ide\IdePort2 85B461F8
Device \Driver\atapi \Device\Ide\IdePort3 85B461F8
Device \Driver\volmgr \Device\HarddiskVolume3 85B441F8
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
Device \Driver\cdrom \Device\CdRom1 86CD51F8
Device \Driver\PCI_PNP6278 \Device\00000067 sppp.sys
Device \Driver\NetBT \Device\NetBt_Wins_Export 86CB91F8
Device \Driver\ACPI_HAL \Device\0000005c halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
Device \Driver\NetBT \Device\NetBT_Tcpip_{8BC521FC-0AC5-4083-8AC6-182C6E750D77} 86CB91F8
Device \Driver\usbohci \Device\USBFDO-0 86E1F1F8
Device \Driver\usbohci \Device\USBFDO-1 86E1F1F8
Device \Driver\usbohci \Device\USBFDO-2 86E1F1F8
Device \Driver\usbohci \Device\USBFDO-3 86E1F1F8
Device \Driver\usbohci \Device\USBFDO-4 86E1F1F8
Device \Driver\usbehci \Device\USBFDO-5 86E231F8
Device \Driver\USBSTOR \Device\0000008b 86D461F8
Device \Driver\USBSTOR \Device\0000008c 86D461F8
Device \Driver\a7nmkmsd \Device\Scsi\a7nmkmsd1 86F21500
Device \Driver\a7nmkmsd \Device\Scsi\a7nmkmsd1Port4Path0Target0Lun0 86F21500
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x25 0x02 0x8A 0x0B ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xD8 0xC3 0xF0 0x6E ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x57 0x2F 0xEB 0x19 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12 0xD8 0x4D 0x0E 0x3F ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x25 0x02 0x8A 0x0B ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xD8 0xC3 0xF0 0x6E ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x57 0x2F 0xEB 0x19 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12 0xD8 0x4D 0x0E 0x3F ...
---- EOF - GMER 1.0.15 ----
|
