GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-11-15 19:53:52 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4 WDC_WD1600JB-00REA0 rev.20.00K20 Running: scmumi4p.exe; Driver: C:\DOCUME~1\mama\USTAWI~1\Temp\pgtdypob.sys ---- System - GMER 1.0.15 ---- SSDT \??\C:\WINNT\system32\Drivers\uphcleanhlp.sys ZwUnloadKey [0xB86BD6D0] <-- ROOTKIT !!! ---- Kernel code sections - GMER 1.0.15 ---- .text C:\WINNT\system32\DRIVERS\nv4_mini.sys section is writeable [0xF57AE360, 0x3CDCE5, 0xE8000020] ? C:\WINNT\system32\Drivers\uphcleanhlp.sys Nie można odnaleźć określonego pliku. ! ---- User code sections - GMER 1.0.15 ---- .text C:\WINNT\Explorer.EXE[316] USER32.dll!DialogBoxParamW 7E3747AB 5 Bytes JMP 10004540 c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll .text C:\Program Files\Internet Explorer\iexplore.exe[464] USER32.dll!DialogBoxParamW 7E3747AB 5 Bytes JMP 10004540 c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll .text C:\WINNT\system32\winlogon.exe[672] USER32.dll!DialogBoxParamW 7E3747AB 5 Bytes JMP 10004540 c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll .text C:\WINNT\system32\services.exe[716] USER32.dll!DialogBoxParamW 7E3747AB 5 Bytes JMP 10004540 c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll .text C:\WINNT\system32\lsass.exe[728] USER32.dll!DialogBoxParamW 7E3747AB 5 Bytes JMP 10004540 c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll .text ... ---- User IAT/EAT - GMER 1.0.15 ---- IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\Explorer.EXE [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\Explorer.EXE [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\Explorer.EXE [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\WININET.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\WININET.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\Explorer.EXE[316] @ C:\WINNT\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] [7164A16B] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [7164A16B] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [7164A16B] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [71649F5D] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [7164A16B] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!PostMessageW] [10009130] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SendMessageW] [10009190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [7164A16B] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] [71649F5D] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SendMessageW] [10009190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!PostMessageW] [10009130] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [7164A16B] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] [71649F5D] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [USER32.dll!PostMessageW] [10009130] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ole32.dll [USER32.dll!SendMessageW] [10009190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryExA] [71649F5D] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\USERENV.dll [USER32.dll!PostMessageW] [10009130] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ws2_32.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\ws2_32.dll [KERNEL32.dll!LoadLibraryA] [71649E59] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [71649E59] C:\WINNT\AppPatch\AcLayers.DLL (Windows Compatibility DLL/Microsoft Corporation) IAT C:\Program Files\Internet Explorer\iexplore.exe[464] @ C:\WINNT\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [5CFE7774] C:\WINNT\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\winlogon.exe [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\winlogon.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\winlogon.exe [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\winlogon.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\winlogon.exe [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\winlogon.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\winlogon.exe [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\winlogon.exe [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\REGAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\winlogon.exe[672] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtDeleteFile] [100093B0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\services.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\services.exe[716] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\LSASRV.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SAMSRV.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\lsass.exe[728] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[932] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[980] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\System32\svchost.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\System32\svchost.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\System32\svchost.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\System32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\System32\svchost.exe[1028] @ C:\WINNT\System32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1084] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1184] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1444] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [011B92C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [011B9250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [011B8CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [011B9400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [011BAF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [011BB0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [011BAFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [011BB060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [011BAEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [011BAF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [011B8CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [011B9340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [011B8C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [011BB260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [011B8F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [011B8FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [011B9030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [011B8C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [011BAEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [011B8CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [011B92C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [011B9340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [011B8CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [011B8F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [011B9400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [011BB260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [011BAF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [011BB210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [011BAF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [011BAFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [011BB0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [011BB060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [011B9250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [011B8CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [011B9340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [011B9250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [011B8CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [011BB0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [011BAF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [011B8C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [011BAF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [011BB060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [011BAFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [011BB260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [011BAEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [011BB0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [011BAF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [011B92C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [011BAF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [011BB0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [011B9250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [011B8CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [011B9400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [011B9030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\IPHLPAPI.DLL [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\IPHLPAPI.DLL [ntdll.dll!NtCreateFile] [011B92C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\IPHLPAPI.DLL [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtOpenFile] [011B9250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtCreateFile] [011B92C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\WS2HELP.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtCreateFile] [011B92C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtOpenFile] [011B9250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\NETAPI32.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [011B92C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [011BAFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [011BB060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [011BB0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [011BB210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [011B9250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [011B90E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [011B9400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [011BB0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [011BB190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [011BB210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [011BB260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [011BB060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [011BAEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [011BAF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [011B8CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [011B92C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [011B9030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [011B9090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe[1508] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [011B9340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\Documents and Settings\mama\Moje dokumenty\Pobieranie\scmumi4p.exe[1564] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\svchost.exe [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\svchost.exe [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\kernel32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtFlushBuffersFile] [10008F70] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ADVAPI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtReadFile] [10008CB0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\RPCRT4.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\Secur32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryKey] [10008C90] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USER32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\GDI32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwDeleteValueKey] [1000B260] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwEnumerateKey] [1000AEA0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!ZwQueryValueKey] [1000AF80] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\ole32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtEnumerateValueKey] [1000AF10] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtQueryInformationFile] [10008CD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [ntdll.dll!NtSetInformationFile] [10009400] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHELL32.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExA] [10008FD0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\SHLWAPI.dll [USER32.dll!SetWindowsHookExW] [10009030] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryW] [100090E0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateFile] [100092C0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtSetValueKey] [1000AFF0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtCreateKey] [1000B060] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenKey] [1000B0D0] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtDeleteKey] [1000B210] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtOpenFile] [10009250] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\USERENV.dll [ntdll.dll!NtClose] [1000B190] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] [10009090] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll IAT C:\WINNT\system32\svchost.exe[1608] @ C:\WINNT\system32\PSAPI.DLL [ntdll.dll!NtWriteFile] [10009340] c:\docume~1\alluse~1\daneap~1\browse~1\23796~1.11\{16cdf~1\browse~1.dll ---- Devices - GMER 1.0.15 ---- Device \Driver\prodrv06 \Device\ProDrv06 E1D72B40 Device \Driver\atapi \Device\Ide\IdePort0 prosync1.sys (StarForce Protection Synchronization Driver/Protection Technology) Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 prosync1.sys (StarForce Protection Synchronization Driver/Protection Technology) Device \Driver\atapi \Device\Ide\IdePort1 prosync1.sys (StarForce Protection Synchronization Driver/Protection Technology) Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c prosync1.sys (StarForce Protection Synchronization Driver/Protection Technology) Device \Driver\prohlp02 \Device\ProHlp02 E101EB40 Device \Driver\nvgts \Device\Scsi\nvgts1 prosync1.sys (StarForce Protection Synchronization Driver/Protection Technology) AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) ---- Services - GMER 1.0.15 ---- Service C:\WINNT\system32\drivers\mbamswissarmy.sys (*** hidden *** ) [MANUAL] MBAMSwissArmy <-- ROOTKIT !!! ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x74 0xB5 0x3C 0x1F ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 E:\Programy\Alcohol 120\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xB2 0x07 0x79 0x35 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xA4 0x07 0x95 0xA7 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg41 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg41@ujdew 0x87 0x1C 0x60 0x0C ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x58 0x6D 0xEE 0x06 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 E:\Programy\Alcohol 120\ Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x4C 0x2B 0xEE 0x2C ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xBB 0xED 0x40 0x4E ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg41 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg41@ujdew 0x21 0xB5 0x33 0xAE ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x74 0xB5 0x3C 0x1F ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 E:\Programy\Alcohol 120\ Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xB2 0x07 0x79 0x35 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xA4 0x07 0x95 0xA7 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg41 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg41@ujdew 0x87 0x1C 0x60 0x0C ... Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}@FriendlyName Windows Media Files Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}@ComponentGUID {3FDF25EE-E592-4495-8391-6E9C504DAC2B} Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}@Version 655360 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}@Sub-Version 3802 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}@ExceptionInfName C:\WINNT\RegisteredPackages\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}\WMSET10.inf Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}@ExceptionCatalogName C:\WINNT\RegisteredPackages\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}\wmset10.cat Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{60204BB3-7078-4F70-8F69-68297621941C}@FriendlyName Windows Media Files Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{60204BB3-7078-4F70-8F69-68297621941C}@ComponentGUID {60204BB3-7078-4F70-8F69-68297621941C} Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{60204BB3-7078-4F70-8F69-68297621941C}@Version 655360 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{60204BB3-7078-4F70-8F69-68297621941C}@Sub-Version 3802 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{60204BB3-7078-4F70-8F69-68297621941C}@ExceptionInfName C:\WINNT\RegisteredPackages\{60204BB3-7078-4F70-8F69-68297621941C}\MPSTUB10.inf Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{60204BB3-7078-4F70-8F69-68297621941C}@ExceptionCatalogName C:\WINNT\RegisteredPackages\{60204BB3-7078-4F70-8F69-68297621941C}\mpstub10.cat Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}@FriendlyName Windows Media Player Exception Pack Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}@ComponentGUID {CAC24AF7-5447-4F19-9FA6-F6E6E69D395E} Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}@Version 589824 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}@Sub-Version 2980 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}@ExceptionInfName C:\WINNT\RegisteredPackages\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}\wmexpack.inf Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}@ExceptionCatalogName C:\WINNT\RegisteredPackages\{CAC24AF7-5447-4F19-9FA6-F6E6E69D395E}\wmexpack.cat Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}@FriendlyName Windows Media Files Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}@ComponentGUID {CFB4B314-0328-45E1-94AF-45A3F5F48E0B} Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}@Version 655360 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}@Sub-Version 3802 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}@ExceptionInfName C:\WINNT\RegisteredPackages\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}\MPCD10.inf Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}@ExceptionCatalogName C:\WINNT\RegisteredPackages\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}\mpcd10.cat Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{DD90D410-1823-43EB-9A16-A2331BF08799}@FriendlyName Windows Media Files Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{DD90D410-1823-43EB-9A16-A2331BF08799}@ComponentGUID {DD90D410-1823-43EB-9A16-A2331BF08799} Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{DD90D410-1823-43EB-9A16-A2331BF08799}@Version 655360 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{DD90D410-1823-43EB-9A16-A2331BF08799}@Sub-Version 3802 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{DD90D410-1823-43EB-9A16-A2331BF08799}@ExceptionInfName C:\WINNT\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\WMP10.inf Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents\{DD90D410-1823-43EB-9A16-A2331BF08799}@ExceptionCatalogName C:\WINNT\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmp10.cat Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\OptionalComponents\SwDir@Installed 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\OptionalComponents\SwFlash@Installed 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\AutorunsDisabled@{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} Shell Extensions for RealOne Player Reg HKLM\SOFTWARE\Microsoft\Windows Media Device Manager\Plugins\SP\NeroBurnPlugin@ProgID MDNeroBurnPlugin.MDNeroBurnPlugin Reg HKLM\SOFTWARE\Classes\CLSID\{863215D2-A6E6-5E11-793C-9925C91F944A}\InprocServer32@ C:\WINNT\system32\3ivxDSEncoder.ax Reg HKLM\SOFTWARE\Classes\CLSID\{863215D2-A6E6-5E11-793C-9925C91F944A}\InprocServer32@ThreadingModel Both ---- Files - GMER 1.0.15 ---- File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060036.exe 4481024 bytes File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060037.exe 4667024 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060038.exe 212432 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060039.exe 279504 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060040.exe 116648 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060041.exe 59344 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060042.exe 59344 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060043.exe 763232 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060044.dll 834000 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060045.dll 25040 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060046.dll 26576 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060047.dll 30160 bytes executable File C:\System Volume Information\_restore{5D7AC872-9EC9-4277-BB4B-A206AF5B5F82}\RP88\A0060048.dll 28624 bytes executable ---- EOF - GMER 1.0.15 ----