GMER 2.2.19882 - http://www.gmer.net Rootkit scan 2016-07-22 19:49:28 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SAMSUNG_HD502HJ rev.1AJ100E4 465,76GB Running: 9cfv6bo6.exe; Driver: C:\Users\komputer\AppData\Local\Temp\pgddiaoc.sys ---- Kernel code sections - GMER 2.2 ---- .text C:\Windows\System32\win32k.sys!EngSetLastError + 608 fffff96000105bf4 8 bytes [C4, 00, C9, 03, 80, F8, FF, ...] .text C:\Windows\System32\win32k.sys!W32pServiceTable fffff96000135900 7 bytes [80, 48, F3, FF, 01, 55, F0] .text C:\Windows\System32\win32k.sys!W32pServiceTable + 8 fffff96000135908 3 bytes [C0, 06, 02] .text ... * 105 .text C:\Windows\System32\win32k.sys!EngQueryW32kCddInterface + 784 fffff960001fe120 6 bytes {JMP QWORD [RIP+0x66a8e]} .text C:\Windows\System32\win32k.sys!EngGetProcessHandle + 740 fffff9600026ca18 8 bytes [00, 19, C9, 03, 80, F8, FF, ...] ---- User code sections - GMER 2.2 ---- .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\lsass.exe[644] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000000070480 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000000070470 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000000070360 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000000070490 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000000703d0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000000070310 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000000703a0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000000070380 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0xffffffff88ad4490} .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000000702d0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000000702c0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000000070300 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000000703b0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000000070440 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000000703e0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000000070220 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000000704a0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000000070390 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000000702e0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000000070340 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000000070280 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000000702a0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000000703c0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000000070320 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000000070410 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000000070230 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000000703f0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000000701d0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000000070240 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000000704b0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000000704c0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000000702f0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000000070350 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000000070290 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000000702b0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000000070370 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000000070330 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000000070460 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000000070420 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000000070250 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000000070260 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000000070400 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000000701e0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000000070200 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000000701f0 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000000070430 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000000070450 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000000070210 .text C:\Windows\system32\lsm.exe[656] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000000070270 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\svchost.exe[764] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\svchost.exe[904] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\System32\svchost.exe[1004] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\System32\svchost.exe[252] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\svchost.exe[364] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\svchost.exe[1180] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\Dwm.exe[1516] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\Explorer.EXE[1540] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000000060480 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000000060470 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000000060360 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000000060490 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000000603d0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000000060310 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000000603a0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000000060380 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0xffffffff88ac4490} .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000000602d0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000000602c0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000000060300 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000000603b0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000000060440 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000000603e0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000000060220 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000000604a0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000000060390 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000000602e0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000000060340 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000000060280 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000000602a0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000000603c0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000000060320 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000000060410 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000000060230 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000000603f0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000000601d0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000000060240 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000000604b0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000000604c0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000000602f0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000000060350 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000000060290 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000000602b0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000000060370 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000000060330 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000000060460 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000000060420 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000000060250 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000000060260 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000000060400 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000000601e0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000000060200 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000000601f0 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000000060430 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000000060450 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000000060210 .text C:\Windows\system32\taskhost.exe[1628] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000000060270 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000000070480 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000000070470 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000000070360 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000000070490 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000000703d0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000000070310 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000000703a0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000000070380 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0xffffffff88ad4490} .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000000702d0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000000702c0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000000070300 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000000703b0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000000070440 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000000703e0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000000070220 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000000704a0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000000070390 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000000702e0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000000070340 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000000070280 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000000702a0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000000703c0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000000070320 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000000070410 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000000070230 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000000703f0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000000701d0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000000070240 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000000704b0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000000704c0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000000702f0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000000070350 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000000070290 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000000702b0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000000070370 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000000070330 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000000070460 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000000070420 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000000070250 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000000070260 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000000070400 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000000701e0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000000070200 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000000701f0 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000000070430 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000000070450 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000000070210 .text C:\Windows\system32\svchost.exe[1756] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000000070270 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\taskeng.exe[1988] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\System32\svchost.exe[2072] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Program Files\AVAST Software\Avast\avastui.exe[2288] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 0000000075f78791 8 bytes [31, C0, C2, 04, 00, 90, 90, ...] .text C:\Windows\SysWOW64\PnkBstrA.exe[2788] C:\Windows\SysWOW64\WSOCK32.dll!recv + 82 00000000724e17fa 2 bytes CALL 75f711a9 C:\Windows\syswow64\kernel32.dll .text C:\Windows\SysWOW64\PnkBstrA.exe[2788] C:\Windows\SysWOW64\WSOCK32.dll!recvfrom + 88 00000000724e1860 2 bytes CALL 75f711a9 C:\Windows\syswow64\kernel32.dll .text C:\Windows\SysWOW64\PnkBstrA.exe[2788] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 98 00000000724e1942 2 bytes JMP 760a6da1 C:\Windows\syswow64\WS2_32.dll .text C:\Windows\SysWOW64\PnkBstrA.exe[2788] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 109 00000000724e194d 2 bytes JMP 760ae8de C:\Windows\syswow64\WS2_32.dll .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\svchost.exe[2812] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000000070480 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000000070470 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000000070360 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000000070490 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000000703d0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000000070310 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000000703a0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000000070380 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0xffffffff88ad4490} .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000000702d0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000000702c0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000000070300 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000000703b0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000000070440 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000000703e0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000000070220 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000000704a0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000000070390 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000000702e0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000000070340 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000000070280 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000000702a0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000000703c0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000000070320 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000000070410 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000000070230 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000000703f0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000000701d0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000000070240 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000000704b0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000000704c0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000000702f0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000000070350 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000000070290 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000000702b0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000000070370 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000000070330 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000000070460 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000000070420 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000000070250 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000000070260 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000000070400 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000000701e0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000000070200 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000000701f0 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000000070430 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000000070450 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000000070210 .text C:\Windows\system32\svchost.exe[2224] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000000070270 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\wbem\wmiprvse.exe[2340] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\system32\svchost.exe[1140] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077572170 5 bytes JMP 00000000002b075c .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077575be0 5 bytes JMP 00000000002b03a4 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] C:\Windows\SYSTEM32\ntdll.dll!NtMapViewOfSection 000000007759bdb0 16 bytes [50, 48, B8, 4C, 35, EA, F0, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077572170 5 bytes JMP 00000000000a075c .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077575be0 5 bytes JMP 00000000000a03a4 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtSetInformationThread 000000007759bc00 16 bytes [50, 48, B8, 4C, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadToken 000000007759bd70 16 bytes [50, 48, B8, A4, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 48 bytes [50, 48, B8, 20, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 000000007759bdd0 16 bytes [50, 48, B8, 70, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 000000007759be20 32 bytes [50, 48, B8, C8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtOpenFile 000000007759be60 16 bytes [50, 48, B8, B0, 15, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtQueryAttributesFile 000000007759bf00 16 bytes [50, 48, B8, F8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtCreateFile 000000007759c080 16 bytes [50, 48, B8, 74, 14, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcessToken 000000007759caf0 16 bytes [50, 48, B8, 44, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 16 bytes [50, 48, B8, 80, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] C:\Windows\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 000000007759cc90 16 bytes [50, 48, B8, 0C, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077572170 5 bytes JMP 000000000023075c .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077575be0 5 bytes JMP 00000000002303a4 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtSetInformationThread 000000007759bc00 16 bytes [50, 48, B8, 4C, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadToken 000000007759bd70 16 bytes [50, 48, B8, A4, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 48 bytes [50, 48, B8, 20, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 000000007759bdd0 16 bytes [50, 48, B8, 70, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 000000007759be20 32 bytes [50, 48, B8, C8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtOpenFile 000000007759be60 16 bytes [50, 48, B8, B0, 15, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtQueryAttributesFile 000000007759bf00 16 bytes [50, 48, B8, F8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtCreateFile 000000007759c080 16 bytes [50, 48, B8, 74, 14, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcessToken 000000007759caf0 16 bytes [50, 48, B8, 44, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 16 bytes [50, 48, B8, 80, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] C:\Windows\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 000000007759cc90 16 bytes [50, 48, B8, 0C, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077572170 5 bytes JMP 000000000023075c .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077575be0 5 bytes JMP 00000000002303a4 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtSetInformationThread 000000007759bc00 16 bytes [50, 48, B8, 4C, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadToken 000000007759bd70 16 bytes [50, 48, B8, A4, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 48 bytes [50, 48, B8, 20, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 000000007759bdd0 16 bytes [50, 48, B8, 70, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 000000007759be20 32 bytes [50, 48, B8, C8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenFile 000000007759be60 16 bytes [50, 48, B8, B0, 15, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtQueryAttributesFile 000000007759bf00 16 bytes [50, 48, B8, F8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtCreateFile 000000007759c080 16 bytes [50, 48, B8, 74, 14, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcessToken 000000007759caf0 16 bytes [50, 48, B8, 44, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 16 bytes [50, 48, B8, 80, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] C:\Windows\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 000000007759cc90 16 bytes [50, 48, B8, 0C, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077572170 5 bytes JMP 00000000003b075c .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077575be0 5 bytes JMP 00000000003b03a4 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtSetInformationThread 000000007759bc00 16 bytes [50, 48, B8, 4C, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadToken 000000007759bd70 16 bytes [50, 48, B8, A4, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 48 bytes [50, 48, B8, 20, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 000000007759bdd0 16 bytes [50, 48, B8, 70, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 000000007759be20 32 bytes [50, 48, B8, C8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtOpenFile 000000007759be60 16 bytes [50, 48, B8, B0, 15, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtQueryAttributesFile 000000007759bf00 16 bytes [50, 48, B8, F8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtCreateFile 000000007759c080 16 bytes [50, 48, B8, 74, 14, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcessToken 000000007759caf0 16 bytes [50, 48, B8, 44, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 16 bytes [50, 48, B8, 80, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] C:\Windows\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 000000007759cc90 16 bytes [50, 48, B8, 0C, 17, F9, 3F, ...] .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePort 000000007759bbe0 5 bytes JMP 0000000077700480 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtQueryObject 000000007759bc30 5 bytes JMP 0000000077700470 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 5 bytes JMP 0000000077700360 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtReplyWaitReceivePortEx 000000007759bde0 5 bytes JMP 0000000077700490 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007759bdf0 5 bytes JMP 00000000777003d0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSection 000000007759bea0 5 bytes JMP 0000000077700310 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 000000007759bed0 5 bytes JMP 00000000777003a0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject 000000007759bef0 1 byte JMP 0000000077700380 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtDuplicateObject + 2 000000007759bef2 3 bytes {JMP 0x164490} .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEvent 000000007759bf30 5 bytes JMP 00000000777002d0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEvent 000000007759bfb0 5 bytes JMP 00000000777002c0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSection 000000007759bfd0 5 bytes JMP 0000000077700300 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThread 000000007759c010 5 bytes JMP 00000000777003b0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtResumeThread 000000007759c050 5 bytes JMP 0000000077700440 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateThread 000000007759c060 5 bytes JMP 00000000777003e0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtAddBootEntry 000000007759c1c0 5 bytes JMP 0000000077700220 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtAlpcSendWaitReceivePort 000000007759c380 5 bytes JMP 00000000777004a0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtAssignProcessToJobObject 000000007759c3b0 5 bytes JMP 0000000077700390 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateEventPair 000000007759c490 5 bytes JMP 00000000777002e0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateIoCompletion 000000007759c4a0 5 bytes JMP 0000000077700340 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateMutant 000000007759c500 5 bytes JMP 0000000077700280 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateSemaphore 000000007759c590 5 bytes JMP 00000000777002a0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateThreadEx 000000007759c5b0 5 bytes JMP 00000000777003c0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtCreateTimer 000000007759c5c0 5 bytes JMP 0000000077700320 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtDebugActiveProcess 000000007759c630 5 bytes JMP 0000000077700410 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtDeleteBootEntry 000000007759c660 5 bytes JMP 0000000077700230 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtGetContextThread 000000007759c800 5 bytes JMP 00000000777003f0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtLoadDriver 000000007759c920 5 bytes JMP 00000000777001d0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtModifyBootEntry 000000007759c9e0 5 bytes JMP 0000000077700240 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeKey 000000007759ca10 5 bytes JMP 00000000777004b0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtNotifyChangeMultipleKeys 000000007759ca20 5 bytes JMP 00000000777004c0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenEventPair 000000007759ca50 5 bytes JMP 00000000777002f0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenIoCompletion 000000007759ca60 5 bytes JMP 0000000077700350 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenMutant 000000007759cac0 5 bytes JMP 0000000077700290 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenSemaphore 000000007759cb10 5 bytes JMP 00000000777002b0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 5 bytes JMP 0000000077700370 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtOpenTimer 000000007759cb50 5 bytes JMP 0000000077700330 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtQueueApcThreadEx 000000007759ce40 5 bytes JMP 0000000077700460 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtResumeProcess 000000007759cfa0 5 bytes JMP 0000000077700420 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootEntryOrder 000000007759d040 5 bytes JMP 0000000077700250 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtSetBootOptions 000000007759d050 5 bytes JMP 0000000077700260 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 000000007759d060 5 bytes JMP 0000000077700400 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemInformation 000000007759d220 5 bytes JMP 00000000777001e0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtSetSystemPowerState 000000007759d230 5 bytes JMP 0000000077700200 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtShutdownSystem 000000007759d2a0 5 bytes JMP 00000000777001f0 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendProcess 000000007759d300 5 bytes JMP 0000000077700430 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtSuspendThread 000000007759d310 5 bytes JMP 0000000077700450 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtSystemDebugControl 000000007759d320 5 bytes JMP 0000000077700210 .text C:\Windows\System32\svchost.exe[4428] C:\Windows\SYSTEM32\ntdll.dll!NtVdmControl 000000007759d400 5 bytes JMP 0000000077700270 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077572170 5 bytes JMP 00000000001f075c .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077575be0 5 bytes JMP 00000000001f03a4 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtSetInformationThread 000000007759bc00 16 bytes [50, 48, B8, 4C, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadToken 000000007759bd70 16 bytes [50, 48, B8, A4, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcess 000000007759bd90 48 bytes [50, 48, B8, 20, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 000000007759bdd0 16 bytes [50, 48, B8, 70, 17, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 000000007759be20 32 bytes [50, 48, B8, C8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtOpenFile 000000007759be60 16 bytes [50, 48, B8, B0, 15, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtQueryAttributesFile 000000007759bf00 16 bytes [50, 48, B8, F8, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtCreateFile 000000007759c080 16 bytes [50, 48, B8, 74, 14, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtOpenProcessToken 000000007759caf0 16 bytes [50, 48, B8, 44, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtOpenThread 000000007759cb40 16 bytes [50, 48, B8, 80, 16, F9, 3F, ...] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] C:\Windows\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 000000007759cc90 16 bytes [50, 48, B8, 0C, 17, F9, 3F, ...] ---- User IAT/EAT - GMER 2.2 ---- IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlValidateHeap] [7fef09481c0] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlWalkHeap] [7fef0948054] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lcreat] [7fef08fa9a0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lopen] [7fef08fa924] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileA] [7fef08fa580] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\VERSION.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!PrivCopyFileExW] [7fef08fab04] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WTSAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\MPR.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesA] [7fef08fab7c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHELL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\sfc_os.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\dwmapi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!OpenFile] [7fef08fa890] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\MSCTF.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\NETAPI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\NETAPI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\srvcli.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\wkscli.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\OLEACC.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\Secur32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\credui.dll[KERNEL32.dll!RegOpenKeyExA] [7fef08fb60c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\credui.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\pdh.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\pdh.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\pdh.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.23918.0_none_53c8344321b452ba\MSVCP140.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.23918.0_none_53c8344321b452ba\MSVCP140.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.23918.0_none_53c8344321b452ba\MSVCP140.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.23918.0_none_53c8344321b452ba\MSVCP140.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\WinSxS\amd64_avast.vc140.crt_fcc99ee6193ebbca_14.0.23918.0_none_53c8344321b452ba\VCRUNTIME140.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ntmarta.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ntmarta.dll[ADVAPI32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ntmarta.dll[ADVAPI32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ntmarta.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ntmarta.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ntmarta.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WLDAP32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPTBASE.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CRYPTBASE.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\uxtheme.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\uxtheme.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\uxtheme.dll[KERNEL32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\NLAapi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\audioses.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\audioses.dll[ADVAPI32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\audioses.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\audioses.dll[ADVAPI32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\audioses.dll[ADVAPI32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\MMDevAPI.DLL[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\MMDevAPI.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegDeleteValueA] [7fef08fbb44] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegSetValueExA] [7fef08fba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegOpenKeyExA] [7fef08fb60c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\CFGMGR32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\GPAPI.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\Wpc.dll[ADVAPI32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\Wpc.dll[ADVAPI32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\Wpc.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\Wpc.dll[ADVAPI32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\Wpc.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\Wpc.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\wevtapi.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\wevtapi.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\wevtapi.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\wevtapi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SAMLIB.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SAMLIB.dll[KERNEL32.dll!RegSetValueExA] [7fef08fba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SAMLIB.dll[KERNEL32.dll!RegCreateKeyExA] [7fef08fb3dc] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SAMLIB.dll[KERNEL32.dll!RegOpenKeyExA] [7fef08fb60c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\rsaenh.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\rsaenh.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!RegCreateKeyExA] [7fef08fb3dc] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!RegSetValueExA] [7fef08fba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\RpcRtRemote.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\RpcRtRemote.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINHTTP.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINHTTP.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\webio.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\webio.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\webio.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\webio.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\mswsock.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\mswsock.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\mswsock.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\mswsock.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\wship6.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\DNSAPI.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\DNSAPI.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\DNSAPI.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\DNSAPI.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\DNSAPI.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\credssp.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\fwpuclnt.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\fwpuclnt.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINSTA.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\WINSTA.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\wshtcpip.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\explorerframe.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\explorerframe.dll[ADVAPI32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\explorerframe.dll[ADVAPI32.dll!RegCreateKeyW] [7fef08fb318] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\explorerframe.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\explorerframe.dll[ADVAPI32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\explorerframe.dll[ADVAPI32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\DUser.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\DUI70.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\DUI70.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\POWRPROF.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ncrypt.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ncrypt.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ncrypt.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\bcrypt.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\bcrypt.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\bcrypt.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\bcryptprimitives.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\bcryptprimitives.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\cryptnet.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\cryptnet.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\cryptnet.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\cryptnet.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\LINKINFO.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\SearchFolder.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\System32\shdocvw.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\mscms.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\mscms.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\mscms.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2364] @ C:\Windows\system32\mscms.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlValidateHeap] [7fef09481c0] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlWalkHeap] [7fef0948054] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lcreat] [7fef08fa9a0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lopen] [7fef08fa924] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileA] [7fef08fa580] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\VERSION.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!PrivCopyFileExW] [7fef08fab04] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WTSAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\MPR.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesA] [7fef08fab7c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHELL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\sfc_os.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\dwmapi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!OpenFile] [7fef08fa890] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\MSCTF.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\Secur32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\uxtheme.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\uxtheme.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\uxtheme.dll[KERNEL32.dll!RegDeleteValueW] [7fef08fbbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[ADVAPI32.dll!RegQueryValueExA] [7fef0dcf39c] C:\Windows\AppPatch\AppPatch64\AcLayers.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[ADVAPI32.dll!RegEnumKeyExA] [7fef0dcf694] C:\Windows\AppPatch\AppPatch64\AcLayers.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[ADVAPI32.dll!RegOpenKeyExA] [7fef08fb60c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[ADVAPI32.dll!RegCloseKey] [7fef0dcf4c4] C:\Windows\AppPatch\AppPatch64\AcLayers.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[ADVAPI32.dll!RegQueryValueExW] [7fef0dcf430] C:\Windows\AppPatch\AppPatch64\AcLayers.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[KERNEL32.dll!GetVersion] [7fef0dd4e04] C:\Windows\AppPatch\AppPatch64\AcLayers.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[KERNEL32.dll!CopyFileExW] [7fef08fa260] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\D3DCompiler_47.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libglesv2.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libglesv2.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\d3d9.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\d3d9.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libegl.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libegl.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\dxgi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\dxgi.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\dxgi.dll[ADVAPI32.dll!RegSetValueExA] [7fef08fba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\dxgi.dll[ADVAPI32.dll!RegCreateKeyExA] [7fef08fb3dc] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\dxgi.dll[ADVAPI32.dll!RegOpenKeyExA] [7fef08fb60c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\d3d11.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\d3d11.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2136] @ C:\Windows\system32\d3d11.dll[ADVAPI32.dll!RegOpenKeyExA] [7fef08fb60c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlValidateHeap] [7fef09481c0] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlWalkHeap] [7fef0948054] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lcreat] [7fef08fa9a0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lopen] [7fef08fa924] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileA] [7fef08fa580] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\VERSION.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!PrivCopyFileExW] [7fef08fab04] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WTSAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\MPR.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesA] [7fef08fab7c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHELL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\sfc_os.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwmapi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!OpenFile] [7fef08fa890] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\MSCTF.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\Secur32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!OpenServiceW] [7feec143504] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!CloseServiceHandle] [7feec142b70] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!OpenSCManagerW] [7feec1434ec] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!StartServiceW] [7feec14393c] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\dwrite.dll[ntdll.dll!NtAlpcConnectPort] [7feec1434e4] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[760] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlValidateHeap] [7fef09481c0] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlWalkHeap] [7fef0948054] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lcreat] [7fef08fa9a0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lopen] [7fef08fa924] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileA] [7fef08fa580] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\VERSION.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!PrivCopyFileExW] [7fef08fab04] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WTSAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\MPR.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesA] [7fef08fab7c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHELL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\sfc_os.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwmapi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!OpenFile] [7fef08fa890] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\MSCTF.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\Secur32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!OpenServiceW] [7feec143504] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!CloseServiceHandle] [7feec142b70] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!OpenSCManagerW] [7feec1434ec] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!StartServiceW] [7feec14393c] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\dwrite.dll[ntdll.dll!NtAlpcConnectPort] [7feec1434e4] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4004] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlValidateHeap] [7fef09481c0] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlWalkHeap] [7fef0948054] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lcreat] [7fef08fa9a0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lopen] [7fef08fa924] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileA] [7fef08fa580] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\VERSION.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!PrivCopyFileExW] [7fef08fab04] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WTSAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\MPR.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesA] [7fef08fab7c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHELL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\sfc_os.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwmapi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!OpenFile] [7fef08fa890] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\MSCTF.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\Secur32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!OpenServiceW] [7feec143504] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!CloseServiceHandle] [7feec142b70] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!OpenSCManagerW] [7feec1434ec] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!StartServiceW] [7feec14393c] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\dwrite.dll[ntdll.dll!NtAlpcConnectPort] [7feec1434e4] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4276] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNEL32.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlExitUserProcess] [7fef09482e4] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlLockHeap] [7fef09480e8] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlUnlockHeap] [7fef0948164] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlCreateHeap] [7fef0947e84] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlDestroyHeap] [7fef0948048] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlValidateHeap] [7fef09481c0] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\KERNELBASE.dll[ntdll.dll!RtlWalkHeap] [7fef0948054] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ADVAPI32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\SYSTEM32\sechost.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\RPCRT4.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lcreat] [7fef08fa9a0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lopen] [7fef08fa924] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileA] [7fef08fa580] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\VERSION.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINMM.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[ntdll.dll!RtlSizeHeap] [7fef0948260] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegCreateKeyExW] [7fef08fb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegSetValueExW] [7fef08fbaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\GDI32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!PrivCopyFileExW] [7fef08fab04] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WTSAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\MPR.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SspiCli.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesA] [7fef08fab7c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\ole32.dll[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHELL32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!CopyFileW] [7fef08fa184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileExW] [7fef08fa804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileW] [7fef08fa6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlReAllocateHeap] [7fef09473ec] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\sfc_os.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\sfc_os.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwmapi.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!OpenFile] [7fef08fa890] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\MSCTF.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\COMDLG32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!_lwrite] [7fef08faa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\IPHLPAPI.DLL[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WS2_32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINTRUST.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\CRYPT32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileA] [7fef08fa2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!DeleteFileW] [7fef08fa5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!SetFileAttributesW] [7fef08fabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\Secur32.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\Secur32.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!OpenServiceW] [7feec143504] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!CloseServiceHandle] [7feec142b70] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!OpenSCManagerW] [7feec1434ec] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef08fb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwrite.dll[ADVAPI32.dll!StartServiceW] [7feec14393c] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!GetProcAddress] [7fefd0d4230] C:\Windows\system32\apphelp.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwrite.dll[KERNEL32.dll!CreateFileW] [7fef08fa42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\dwrite.dll[ntdll.dll!NtAlpcConnectPort] [7feec1434e4] C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlAllocateHeap] [7fef09471cc] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4840] @ C:\Windows\system32\cryptbase.dll[ntdll.dll!RtlFreeHeap] [7fef0947a7c] C:\Windows\AppPatch\AppPatch64\AcXtrnal.DLL ---- Threads - GMER 2.2 ---- Thread C:\Windows\System32\svchost.exe [4428:4808] 000007fee7c89688 ---- Registry - GMER 2.2 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\Instup_14679149616302272@SetupOperations ?????????????????t??????????f4??????????@volume.inf,%msft%;Microsoft? ??system32\DRIVERS\rasl2tp.sys?????????????????v???????????t???????????????????????????????o?o?????????t??????????????????????{8ECC055D-047F-11D1-A537-0000F8753ED1}??????@%SystemRoot%\system32\drivers\fvevol.sys,-100??? ??{8ECC055D-047F-11D1-A537-0000F8753ED1}???d??{8ECC055D-047F-11D1-A537-0000F8753ED1}??s???{8ECC055D-047F-11D1-A537-0000F8753ED1}??????@%systemroot%\system32\DRIVERS\RDPCDD.sys,-100?-c3??{8ECC055D-047F-11D1-A537-0000F8753ED1}??ar??@%SystemRoot%\system32\tcpipcfg.dll,-50004?-DT??avast! mini-filter driver (aswMonFlt)????o?o?????????t??{b99c8534-7800-48fa-bd71-519a46cdc7e1}w64?????????????????p????????????????????????????????????????????????????????????????????????????s????@%SystemRoot%\system32\drivers\volmgrx.sys,-100??/???i?i?t?y?i???p??? H?????????????????{682d77bf-fc9c-450a-91b2-3a6982f155c6}w64???4???????????????????????????Tdx?tcpip?????????R????????????n?????t?t?????????y????X??????????????????????s????????????????????? Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\Instup_14679150047802272@SetupOperations ?????????????????F??E???? ?????????????????????*????????????&???????????????????????? ?????????????????????0??L????????? ????????u??????$???4????? ??????? ??????????????????????????????????????????????????????? ??????????? ??????????? ??????????????? ????????J??HJ???????????????????????????????????????????J???????????????????????$???????????????L?????????????????? ??????????????????? ??????????? ?????????????????v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|App=%SystemRoot%\system32\svchost.exe|Svc=WcesComm|Name=@%systemroot%\WindowsMobile\wmdcBase.exe,-4016|Desc=@%systemroot%\WindowsMobile\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\WindowsMobile\wmdcBase.exe,-4014|????v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\system32\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28548|Desc=@FirewallAPI.dll,-28549|EmbedCtxt=@FirewallAPI.dll,-28502|??s??v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Public|RPort=5355|RA4=Lo Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\Instup_14679149616302272@SetupOperations ????????? ?????????????????????,??????????Z??????1???? ??????0??????????????????????????? ???????0?????753??disk.inf:disk_device.NTamd64:disk_install:6.1.7601.19133:gendisk?S??disk.inf:disk_device.NTamd64:disk_install:6.1.7601.19133:gendisk?????????????????u??????C:\ProgramData\\DCHP\\DCHP.exe -f "C:\ProgramData\\DCHP\\DCHP.dat" -l -a????LocalSystem??????????????T???T???????????T???T????????????????????????&??????t??????????$???4????? ??????? ??????????????????????????????????????????????????????? ??????????? ??????????? ??????????????? ???&???? ??HJ???????????_???????_???_???_??????????????? ???????????????_???????I?????????????????????????????????? ??????????????????? ????_?????? ?????????????????????????????????????????????????6.1.7601.19133?.?.??@disk.inf,%genmanufacturer%;(Standardowe stacje dysk?w)?????? ?????????????????????????????????????????t????? ??????????????????????????????????????n???? ???????????????????????????????????????????n?????????????????????????????? ??????????? ?????????????????????? Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\Instup_14679150047802272@SetupOperations ????????\??\USB#VID_0000&PID_0000#5&30ac598d&0&1#{a5dcbf10-6530-11d2-901f-00c04fb951ed}??????????????e??????????????????????6.1.7601.18328??????? ???????????????????????????????????????f????p????????gVXx?@disk.inf,%genmanufacturer%;(Standardowe stacje dysk?w)???????????????????????????`???0???????????????8?USB DISK 2.0 USB Device???8?????????????????????????sc????0??????H??????USB DISK 2.0 USB Device?????????????????????????????????????disk.inf:disk_device.NTamd64:disk_install:6.1.7601.19133:gendisk????????????????????????????????????????????????????????????????????????????????????????????????????????????????????6.1.7601.19133??????????????????????????????????????Stacja dysk?w????????????D??a\???????????n??76???????????8??C.???????????D??8C??disk_install?1???????????e??cc???????????g??e.???????????????????????????????????????????\??al???????????????????????????????????????????s??????????????USB DISK 2.0 USB Device?om???????????????????????????????i???????????????m???????????4?4?4?4?4?4?????4??????76??GENERIC ---- EOF - GMER 2.2 ----