GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2015-06-19 18:56:11 Windows 6.1.7600 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 TOSHIBA_ rev.FG00 465,76GB Running: e18s85yc.exe; Driver: C:\Users\OLSZEW~1\AppData\Local\Temp\uwtdyuoc.sys ---- User IAT/EAT - GMER 2.1 ---- IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!_wtoi] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!_wcsnicmp] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!towupper] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!memcpy] [40100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!memcmp] [ffffffff0000000b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!memset] [ffffffff0000057f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!_vsnprintf] [89f00000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!memcpy_s] [9650000089f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!free] [4010000007a] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!iswalpha] [ffffffff0000089f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!wcschr] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!wcstombs] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!swscanf_s] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!memmove] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!_XcptFilter] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!malloc] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!_initterm] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!_amsg_exit] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!_vsnwprintf] [40100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[msvcrt.dll!sqrtf] [b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!NtQuerySystemInformation] [8a000000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!DbgPrintEx] [966000008a0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!EtwEventRegister] [4010000007a] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!EtwEventUnregister] [ffffffff000008a0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!RtlCaptureContext] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!RtlLookupFunctionEntry] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!RtlVirtualUnwind] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!WinSqmAddToStream] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!WinSqmIsOptedIn] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!WinSqmSetDWORD] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!WinSqmIncrementDWORD] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!EtwEventWrite] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[ntdll.dll!DbgPrompt] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetNearestColor] [76ad03e0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetNearestPaletteIndex] [76afc1b0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateRoundRectRgn] [76acfe80] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateRectRgn] [76acefb0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetPixel] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!ExtFloodFill] [7fefd391090] C:\Windows\system32\GDI32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SetMagicColors] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SelectClipRgn] [76ad0470] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!StretchBlt] [76ab4470] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SetStretchBltMode] [76ab44b0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!IntersectClipRect] [76af8cb0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GdiTransparentBlt] [76ab3640] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetDIBColorTable] [76ad3490] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreatePatternBrush] [76ac5cf0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateHalftonePalette] [76ac4d60] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateBitmap] [76ac6060] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!RestoreDC] [76ad2890] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SetBkColor] [76ac6210] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!TextOutW] [76ac5e60] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetTextColor] [76ac56b0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SaveDC] [76ad2c00] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateCompatibleBitmap] [76ac53c0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetRegionData] [76ac5cb0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GdiAlphaBlend] [76ad0420] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SetLayout] [76d01820] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SetTextColor] [76acfeb0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SetBkMode] [76d01a10] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!BitBlt] [76d15510] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateDIBSection] [76ac9690] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateCompatibleDC] [76ac5650] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!DeleteDC] [76ad02d0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!EnumFontFamiliesExW] [76ac6190] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetObjectW] [76b49220] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateFontIndirectW] [76ad04b0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SelectPalette] [76ad0490] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!RealizePalette] [76ad28e0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SelectObject] [76d01850] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!PatBlt] [76ad0c30] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!DeleteObject] [76d01880] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetStockObject] [76d02110] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!SetPaletteEntries] [76d1d290] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetPaletteEntries] [76d019e0] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreateSolidBrush] [76ad0ba0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetDeviceCaps] [76ad2870] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!CreatePalette] [76ac9620] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!TranslateCharsetInfo] [76ab73d0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetTextExtentPoint32W] [76ac9600] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[GDI32.dll!GetTextMetricsW] [76ac9640] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!FindWindowExW] [6e6f69746163] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!PostThreadMessageW] [e3eb6389d135d08e] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!MessageBoxW] [f21eb2fba8cae2b8] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!CopyRect] [a9a0e8fc8487a2fb] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!OpenIcon] [4d2c06d8174dbfd2] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!FindWindowW] [4c0f21ddf8fcbfb] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetShellWindow] [eab02d680ff1eb4d] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetCursorPos] [7fef9e158b0] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetCursorPos] [7fef9e17c3c] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!CharUpperBuffW] [7fef9e17d20] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!CharLowerW] [7fef9e17d78] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!IsCharUpperW] [7fef9e17dd0] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetDlgItemInt] [7fef9e17ec4] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DrawIconEx] [40100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EnumChildWindows] [138b0000000b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EndTask] [ffffffff00000899] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SendMessageTimeoutW] [89900000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!LoadIconW] [ffffffff00000899] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!RedrawWindow] [40100000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!CallWindowProcW] [ffffffff00000899] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetFocus] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DrawIcon] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!IsWindow] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!LoadBitmapW] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetRect] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DestroyIcon] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetDesktopWindow] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DrawMenuBarTemp] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DrawFrameControl] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DrawCaptionTempW] [40100000003] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetSysColorsTemp] [138b00000002] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DestroyMenu] [4570000089a] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EnableMenuItem] [89a00000066] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!LoadMenuW] [4e70000089a] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetWindowLongW] [bb800000068] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!PtInRect] [ffffffff00000bb9] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!WaitForInputIdle] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!RegisterClassW] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetClassInfoW] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetDlgCtrlID] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!CharNextW] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EnumDisplaySettingsExW] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!ChangeDisplaySettingsW] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!ChangeDisplaySettingsExW] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetRectEmpty] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!RegisterClipboardFormatW] [40100000002] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EnumDisplayDevicesW] [138b00000002] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DrawTextW] [4570000089a] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!OffsetRect] [8a800000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!MonitorFromPoint] [ffffffff000008a8] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!FillRect] [bbf00000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!ValidateRect] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetForegroundWindow] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!LoadImageW] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EndPaint] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!BeginPaint] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!PostQuitMessage] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!KillTimer] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetTimer] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetMessageW] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!UnregisterClassW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!RegisterClassExW] [40100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!ReleaseCapture] [138b0000000b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetCapture] [ffffffff0000057b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!ShowCursor] [89b00000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetFocus] [9630000089b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetMonitorInfoW] [4010000007a] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!MonitorFromRect] [ffffffff0000089b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!AdjustWindowRect] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetWindowPos] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!MoveWindow] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DrawTextExW] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetDlgItemTextW] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetWindowRect] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!ShowWindow] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!IsWindowVisible] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetWindowLongW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!ChildWindowFromPoint] [40100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DrawEdge] [b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!LoadCursorW] [ffffffff0000057c] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetCursor] [89c00000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetSysColors] [ffffffff0000089c] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetSysColor] [40100000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SystemParametersInfoW] [ffffffff0000089c] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SendNotifyMessageW] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DestroyWindow] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!MapWindowPoints] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DispatchMessageW] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!TranslateMessage] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!PeekMessageW] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!MsgWaitForMultipleObjects] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!PostMessageW] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetWindow] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetParent] [40100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetClientRect] [ffffffff0000000b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!UpdateWindow] [ffffffff0000057f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!InvalidateRect] [89f00000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EnableWindow] [9650000089f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetDlgItemTextW] [4010000007a] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetWindowLongPtrW] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!CheckDlgButton] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!IsDlgButtonChecked] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetWindowTextW] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EndDialog] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetWindowLongPtrW] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetSysColorBrush] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!FrameRect] [50fffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetSystemMetrics] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!InflateRect] [40100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SetDlgItemInt] [b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!LoadStringW] [ffffffff0000057e] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!ReleaseDC] [89e00000064] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetDC] [9640000089e] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SendDlgItemMessageW] [4010000007a] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!SendMessageW] [ffffffff0000089e] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetDlgItem] [50f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!GetClassNameW] [bffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!DialogBoxParamW] [44c00000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!CreateWindowExW] [64ffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[USER32.dll!EnumWindows] [ffffffffffffffff] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHDeleteKeyW] [419930522] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrStrIW] [3000019ee4] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrRChrW] [100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathFindFileNameW] [7fef9e248cc] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHRegGetPathW] [119930522] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrChrW] [19ff0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHRegGetValueW] [300000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHGetValueW] [2000019f40] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHSetValueW] [100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHDeleteValueW] [119930522] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrToIntExW] [19ff0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathIsFileSpecW] [300000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathFindExtensionW] [2000019f6c] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathRemoveExtensionW] [100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathCombineW] [7fef9e248e4] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrStrW] [7fef9e248cc] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHStrDupW] [7fef9e24d74] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathParseIconLocationW] [19ff0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHRegSetPathW] [2000019f98] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathQuoteSpacesW] [100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrDupW] [119930522] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrCmpNW] [19ff0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!UrlCompareW] [2000019fc4] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathRemoveFileSpecW] [100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathIsNetworkPathW] [119930522] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathRemoveBlanksW] [19ff0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathIsRelativeW] [300000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathIsPrefixW] [119930522] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!SHRegGetUSValueW] [200000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!UrlEscapeW] [200001a028] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrCmpNIW] [676e6f6c206f6f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathUnExpandEnvStringsW] [1a020] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathCommonPrefixW] [7020676e69727473] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrFormatByteSizeW] [119930522] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathStripToRootW] [1a068] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathRemoveFileSpecA] [300000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathStripPathA] [200001a070] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrRChrA] [100000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathAddBackslashW] [572d534d2d495041] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathFileExistsW] [76736e69772d6563] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!PathAppendW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrCmpIW] [69767265532d4e49] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrCmpW] [314c2d746e656d65] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrToIntW] [6c6c642e302d312d] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHLWAPI.dll!StrRStrIW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHCreateItemFromIDList] [65766f6d65526f4e] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHCreateItemWithParent] [6c61560065766f] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHGetPathFromIDListW] [4400000042] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHQueryRecycleBinW] [7fef9e114f0] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHCreateDirectoryExW] [7fef9e114c8] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHGetNameFromIDList] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHGetIDListFromObject] [7fef9e31ed0] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!ExtractIconW] [46000000000000c0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!ExtractIconExW] [1] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHCreateItemFromParsingName] [46000000000000c0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHGetKnownFolderPath] [2e495041574c4853] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!SHGetFolderPathEx] [6c6c64] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[SHELL32.dll!ShellExecuteExW] [63006d006f0063] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[slc.dll!SLGetWindowsInformationDWORD] [b] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetCurrentProcess] [76ac5cd0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!DuplicateHandle] [76ad2940] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateEventW] [76ad3470] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!IsDebuggerPresent] [76abf340] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CloseHandle] [76b08c10] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!SetEvent] [76ac1ae0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!LocalAlloc] [76d21b70] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetLastError] [76ad2c70] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetTickCount] [76cf9160] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!LocalFree] [76d1d250] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!lstrcmpiW] [76ad2d60] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetCurrentThread] [76abe0e0] C:\Windows\system32\kernel32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!TerminateThread] [76d01fa0] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!lstrlenW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetUserDefaultUILanguage] [76bdc4c0] C:\Windows\system32\USER32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetLocaleInfoW] [76be92d4] C:\Windows\system32\USER32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FindNextFileW] [76bdf888] C:\Windows\system32\USER32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetNumberFormatW] [76bdf8a4] C:\Windows\system32\USER32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateFileMappingW] [76be7718] C:\Windows\system32\USER32.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!UnmapViewOfFile] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!MapViewOfFile] [7fefa89603c] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetFileSize] [7fefa895818] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!DeactivateActCtx] [7fefa89554c] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!ActivateActCtx] [7fefa8956b4] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!ReleaseActCtx] [7fefa89598c] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateActCtxW] [7fefa895758] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetModuleHandleW] [7fefa8957b8] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FileTimeToDosDateTime] [7fefa895624] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FileTimeToLocalFileTime] [7fefa8962c0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!WideCharToMultiByte] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetDiskFreeSpaceExW] [7fefdf94f58] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!SetFileAttributesW] [7fefdf81530] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!SetFileTime] [7fefdf896c0] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetTempFileNameW] [7fefdf81510] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetTempPathW] [7fefdfb2ef8] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!LCMapStringW] [7fefdfcc260] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!DosDateTimeToFileTime] [7fefdf844f0] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetExitCodeThread] [7fefdfc0d98] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!ResumeThread] [76ce50ac] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!ResetEvent] [7fefdf81000] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!SetUnhandledExceptionFilter] [7fefdf812dc] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!UnhandledExceptionFilter] [7fefdfb6ad0] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!TerminateProcess] [7fefdfaab00] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetSystemTimeAsFileTime] [7fefdfa8f74] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!QueryPerformanceCounter] [7fefdfa9090] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!Sleep] [7fefdfa90b8] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!DelayLoadFailureHook] [7fefdfa8f54] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!LoadLibraryExA] [7fefdfc2b94] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetProcAddress] [7fefdf94c90] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CompareStringW] [7fefdfdaafc] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetCurrentThreadId] [7fefdf84020] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!WriteFile] [7fefdfa8ed4] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!LocalFileTimeToFileTime] [7fefdfaadc8] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!SystemTimeToFileTime] [7fefdfa8eb4] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetLocalTime] [7fefdf840b4] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FormatMessageW] [7fefdf81c94] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetCurrentProcessId] [7fefdf84114] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!ProcessIdToSessionId] [7fefdf810a8] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!HeapFree] [7fefdf810e0] C:\Windows\system32\msvcrt.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetProcessHeap] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!ExpandEnvironmentStringsW] [76d8faf0] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetFileAttributesExW] [76d8fab0] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetFileAttributesW] [76d8fa70] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FindFirstFileExW] [76d1f440] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!ReleaseMutex] [76d05420] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateMutexW] [76ce7ee0] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateThreadpoolWork] [76cfb700] C:\Windows\SYSTEM32\ntdll.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!DeleteFileW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateThread] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FreeLibraryAndExitThread] [7fef9e29ac0] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!LoadLibraryExW] [7fef9e29afc] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FindClose] [7fef9e29b10] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!WaitForSingleObject] [7fef9e29b38] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FindFirstFileW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetSystemWow64DirectoryW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetSystemDirectoryW] [7fef9e238bc] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetWindowsDirectoryW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetModuleFileNameW] [0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!FreeLibrary] [4a5bc7c700000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!LoadLibraryW] [200000000] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetLongPathNameW] [6d8800000027] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!WriteProfileStringW] [6188] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!WaitForMultipleObjects] [7fef9e233d8] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetPrivateProfileStringW] [7fef9e233f0] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!lstrcmpW] [7fef9e23414] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateProcessW] [7fef9e23454] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!MultiByteToWideChar] [7fef9e2346c] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!SetFilePointer] [7fef9e23518] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!ReadFile] [7fef9e234bc] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateFileW] [7fef9e235a4] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CopyFileW] [7fef9e234d0] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CreateDirectoryW] [7fef9e234e0] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!CompareStringOrdinal] [7fef9e234ec] C:\Windows\system32\themeui.dll IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GetProductInfo] [11d16528b62f5910] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!DisableThreadLibraryCalls] [d0d1ef800001196] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!GlobalAlloc] [11d23c6f394c3de0] IAT C:\Windows\Explorer.EXE[360] @ C:\Windows\system32\themeui.dll[KERNEL32.dll!MulDiv] [b77a794fc0007b81] ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\00247e572dd8 Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\00247e572dd8 (not active ControlSet) ---- EOF - GMER 2.1 ----