Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93081 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

[Resolved] on/off then serious error!


  • This topic is locked This topic is locked
59 replies to this topic

#1 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 16 November 2009 - 09:44 PM

i hope somebody can help me.
+my computer was not booting up properly, it would start up, turn off, start up..etc..i got really busy moving and stuff so i was unable to even be bothered for quite sometime. so today i decided to try a few things to see if i could remedy the problem. when i 1st booted up i recieved a message stating that "the system has recovered from a serious error" do i want to send a report, i do then it comes up as the report being corrupted. internet ex[plorer opens up to microfoft for the "corrupt error reporting trouble shooting"..that didnt help.
so istarted off with malwarebytes, that found a few things, then i also ran it in safe mode and it didnt find anything. afterward i continued to experience the same problem with window that states "the system has recovered from a serious error" and no matter how many times i send the report, try to send or cancel that message keeps coming up.
so i came here did atf and the other advice and still the same prob. below is my hijack log and the original malwarebytes log..THANK YOU SO MUCH for your time..

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:44:24 PM, on 11/16/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ContentWatch\Internet Protection\cwsvc.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Net Nanny\nnsvc.exe
C:\Program Files\PDF Complete\pdfsvc.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\wwSecure.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SMINST\Scheduler.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Documents and Settings\All Users\Comodo\COMODO Internet Security\cfp.exe
C:\Program Files\Comodo\VEngine\VEngine.exe
C:\Program Files\ContentWatch\Internet Protection\cwtray.exe
C:\Program Files\Net Nanny\nntray.exe
C:\WINDOWS\system32\dwwin.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...a...all&pf=cmdt
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...a...all&pf=cmdt
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Comodo VerificationEngine Browser Helper NEW - {A968A4B4-C492-4834-B651-17602C3885C8} - C:\Program Files\Comodo\VEngine\VEngineIE32.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: HopSurf toolbar - {E9FAB13D-4600-49E1-90D1-EE961C859D39} - C:\Program Files\Comodo\HopSurfToolbar\HopSurfToolbar_IE.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\Sminst\Recguard.exe
O4 - HKLM\..\Run: [Reminder] C:\WINDOWS\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe
O4 - HKLM\..\Run: [IObit Security 360] C:\Program Files\IObit\IObit Security 360\IStray.exe
O4 - HKLM\..\Run: [NNTray] C:\Program Files\Net Nanny\nnstart.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Documents and Settings\All Users\Comodo\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [VEngine] C:\Program Files\Comodo\VEngine\VEngine.exe
O4 - HKLM\..\Run: [HTV Agent] C:\Documents and Settings\mom\My Documents\HTV\HTV.exe
O4 - HKLM\..\Run: [cwcptray] C:\Program Files\ContentWatch\Internet Protection\cwtray.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Window Washer] C:\Program Files\Webroot\Washer\wwDisp.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: HopSurf - {ED98F8D1-09AC-4107-B2FF-91DBE011B0C5} - C:\Program Files\Comodo\HopSurfToolbar\HopSurfToolbar_IE.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\cwalsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cwalsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cwalsp.dll
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=92&bd=all&pf=cmdt
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1247615996718
O17 - HKLM\System\CCS\Services\Tcpip\..\{42B8A901-FBE4-4815-8F82-DE5BB66DA2BB}: NameServer = 156.154.70.22,156.154.71.22
O17 - HKLM\System\CS1\Services\Tcpip\..\{42B8A901-FBE4-4815-8F82-DE5BB66DA2BB}: NameServer = 156.154.70.22,156.154.71.22
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O23 - Service: McAfee Application Installer Cleanup (0308901243908944) (0308901243908944mcinstcleanup) - Unknown owner - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\030890~1.EXE (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Documents and Settings\All Users\Comodo\COMODO Internet Security\cmdagent.exe
O23 - Service: ContentWatch (CwAltaService20) - ContentWatch, Inc. - C:\Program Files\ContentWatch\Internet Protection\cwsvc.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: NNSvc - Net Nanny Software International, Inc. - C:\Program Files\Net Nanny\nnsvc.exe
O23 - Service: PC Angel (PCA) - SoftThinks - C:\WINDOWS\SMINST\PCAngel.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: Washer AutoComplete (wwSecSvc) - Webroot Software, Inc. - C:\WINDOWS\system32\wwSecure.exe

--
End of file - 7344 bytes


Malwarebytes' Anti-Malware 1.41
Database version: 2775
Windows 5.1.2600 Service Pack 2

11/16/2009 3:54:31 PM
mbam-log-2009-11-16 (15-54-31).txt

Scan type: Full Scan (C:\|D:\|)
Objects scanned: 206778
Time elapsed: 46 minute(s), 55 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 3

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\htv agent (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Documents and Settings\mom\My Documents\HTV\HTV.exe (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Documents\Starter Pack AIO - Welcome To The Internet ( iTeam.PaNNa )\Xilisoft DVD Ripper Platinum 4.0.54.0915 + Keygen (iTeam.PaNNa)\keygen.exe (Malware.Packer) -> Quarantined and deleted successfully.
C:\Documents and Settings\mom\My Documents\HTV\HTV.007 (PUP.ArdamaxKeyLogger) -> Quarantined and deleted successfully.

    Advertisements

Register to Remove


#2 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 18 November 2009 - 04:05 PM

Hello andrew2009,
Welcome to What the Tech.
My name is OCD, I will be helping you with your log today.

Please be advised, as I am still in training, all my replies to you will be checked for accuracy by one of our experts to ensure that I am giving you the best possible advise.
This may cause a delay, but I will do my best to keep it as short as possible.

I am checking over your HJT log now, I will post back shortly with instructions.
OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#3 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 19 November 2009 - 10:36 AM

Hello andrew2009,
  • You may want to print out these instructions for reference prior to proceeding.
  • This solution is specifically tailored for this particular problem, please do not attempt to use this solution on another computer.
  • If you have any questions, or are uncertain about any steps please ask 'before' proceeding.
- - - - - Next - - - - -

Please download DDS from one of the following links and save it to your desktop.
  • Disable any script blocking protection (How to Disable your Security Programs)
  • Double click DDS icon to run the tool (may take up to 3 minutes to run)
  • When done, DDS.txt will open.
  • After a few moments, attach.txt will open in a second window.
  • Save both reports to your desktop.
- - - - - Next - - - - -

Posted Image

Download GMER Rootkit Scanner from here or here.
  • Extract the contents of the zipped file to desktop.
  • Double click GMER.exe. If asked to allow gmer.sys driver to load, please consent .
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.

    Posted Image
    Click the image to enlarge it
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Drives/Partition other than Systemdrive (typically C:\)
    • Show All (don't miss this one)
  • Then click the Scan button & wait for it to finish.
  • Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop, and post it in your next reply.
**Caution**
Rootkit scans often produce false positives. DO NOT take any action on any "<--- ROOKIT" entries


- - - - - Next - - - - -

On your next post please provide the following:
  • Post the contents of the DDS.txt report in your next reply
  • Attach the Attach.txt report to your post by scroling down to the Attachments area and then clicking Browse. Browse to where you saved the file, and click Open and the click UPLOAD.
  • Gmer.txt

OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#4 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 19 November 2009 - 09:46 PM

hi OCD..thank you for your reply..i will be running those programs and posting the results when i get home from work tomorrow evening. its just been one those days :pullhair:

#5 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 19 November 2009 - 11:16 PM

Hi andrew2009, Thanks for the letting me know. :thumbup:
OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#6 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 20 November 2009 - 06:16 PM

ok..the only thing i was able to download was the DDS after that i couldnt even run it because the computer has stated turning on and off again. i dont know if its because when i 1st turned it on it downloaded the microsoft malicious removal tool.
anyhow in order to run the DDS i had to do it in safe mode because that is the only time that it doesnt go off and on. then i saved both docs to a USB drive and went on my other computer to post here..is there anyway to be able to access the internet in safe mode?



DDS (Ver_09-10-26.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 6/1/2009 10:13:23 PM
System Uptime: 11/20/2009 6:53:00 PM (0 hours ago)

Motherboard: PEGATRON CORPORATION | | 2A84h
Processor: Intel Pentium III Xeon processor | CPU 1 | 2999/1333mhz
Processor: Intel Pentium III Xeon processor | CPU 1 | 2999/1333mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 137 GiB total, 4.038 GiB free.
D: is FIXED (NTFS) - 12 GiB total, 1.203 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
J: is Removable

==== Disabled Device Manager Items =============

Class GUID: {FF646F80-8DEF-11D2-9449-00105A075F6B}
Description: pcouffin device ...
Device ID: ROOT\PCOUFFIN\0000
Manufacturer: VSO Software
Name: pcouffin device ...
PNP Device ID: ROOT\PCOUFFIN\0000
Service:

==== System Restore Points ===================

RP210: 7/24/2009 9:12:27 PM - Software Distribution Service 3.0
RP211: 7/24/2009 9:15:19 PM - Software Distribution Service 3.0
RP212: 7/24/2009 9:18:11 PM - Software Distribution Service 3.0
RP213: 7/24/2009 9:21:01 PM - Software Distribution Service 3.0
RP214: 7/24/2009 9:23:51 PM - Software Distribution Service 3.0
RP215: 7/24/2009 9:26:38 PM - Software Distribution Service 3.0
RP216: 7/24/2009 9:29:29 PM - Software Distribution Service 3.0
RP217: 7/24/2009 9:32:19 PM - Software Distribution Service 3.0
RP218: 7/24/2009 9:35:11 PM - Software Distribution Service 3.0
RP219: 7/24/2009 9:38:04 PM - Software Distribution Service 3.0
RP220: 7/24/2009 9:40:58 PM - Software Distribution Service 3.0
RP221: 7/24/2009 9:43:48 PM - Software Distribution Service 3.0
RP222: 7/24/2009 9:46:42 PM - Software Distribution Service 3.0
RP223: 7/24/2009 9:49:36 PM - Software Distribution Service 3.0
RP224: 7/24/2009 9:52:29 PM - Software Distribution Service 3.0
RP225: 7/24/2009 9:55:18 PM - Software Distribution Service 3.0
RP226: 7/24/2009 9:58:21 PM - Software Distribution Service 3.0
RP227: 7/24/2009 10:01:17 PM - Software Distribution Service 3.0
RP228: 7/24/2009 10:04:05 PM - Software Distribution Service 3.0
RP229: 7/24/2009 10:07:02 PM - Software Distribution Service 3.0
RP230: 7/24/2009 10:09:51 PM - Software Distribution Service 3.0
RP231: 7/24/2009 10:12:44 PM - Software Distribution Service 3.0
RP232: 7/24/2009 10:15:39 PM - Software Distribution Service 3.0
RP233: 7/24/2009 10:18:30 PM - Software Distribution Service 3.0
RP234: 7/24/2009 10:21:23 PM - Software Distribution Service 3.0
RP235: 7/24/2009 10:24:10 PM - Software Distribution Service 3.0
RP236: 7/24/2009 10:27:03 PM - Software Distribution Service 3.0
RP237: 7/24/2009 10:30:00 PM - Software Distribution Service 3.0
RP238: 7/24/2009 10:32:55 PM - Software Distribution Service 3.0
RP239: 7/24/2009 10:35:49 PM - Software Distribution Service 3.0
RP240: 7/24/2009 10:38:41 PM - Software Distribution Service 3.0
RP241: 7/24/2009 10:41:38 PM - Software Distribution Service 3.0
RP242: 7/24/2009 10:44:34 PM - Software Distribution Service 3.0
RP243: 7/24/2009 10:47:27 PM - Software Distribution Service 3.0
RP244: 7/24/2009 10:50:17 PM - Software Distribution Service 3.0
RP245: 7/24/2009 10:53:08 PM - Software Distribution Service 3.0
RP246: 7/24/2009 10:55:56 PM - Software Distribution Service 3.0
RP247: 7/24/2009 10:58:52 PM - Software Distribution Service 3.0
RP248: 7/24/2009 11:01:48 PM - Software Distribution Service 3.0
RP249: 7/24/2009 11:04:38 PM - Software Distribution Service 3.0
RP250: 7/24/2009 11:07:36 PM - Software Distribution Service 3.0
RP251: 7/24/2009 11:10:29 PM - Software Distribution Service 3.0
RP252: 7/24/2009 11:13:29 PM - Software Distribution Service 3.0
RP253: 7/24/2009 11:16:18 PM - Software Distribution Service 3.0
RP254: 7/24/2009 11:19:09 PM - Software Distribution Service 3.0
RP255: 7/24/2009 11:22:10 PM - Software Distribution Service 3.0
RP256: 7/24/2009 11:25:09 PM - Software Distribution Service 3.0
RP257: 7/24/2009 11:28:05 PM - Software Distribution Service 3.0
RP258: 7/24/2009 11:31:03 PM - Software Distribution Service 3.0
RP259: 7/24/2009 11:33:56 PM - Software Distribution Service 3.0
RP260: 7/24/2009 11:36:51 PM - Software Distribution Service 3.0
RP261: 7/24/2009 11:39:39 PM - Software Distribution Service 3.0
RP262: 7/24/2009 11:42:35 PM - Software Distribution Service 3.0
RP263: 7/24/2009 11:45:31 PM - Software Distribution Service 3.0
RP264: 7/24/2009 11:48:26 PM - Software Distribution Service 3.0
RP265: 7/24/2009 11:51:21 PM - Software Distribution Service 3.0
RP266: 7/24/2009 11:54:14 PM - Software Distribution Service 3.0
RP267: 7/24/2009 11:57:08 PM - Software Distribution Service 3.0
RP268: 7/25/2009 12:00:11 AM - Software Distribution Service 3.0
RP269: 7/25/2009 12:03:03 AM - Software Distribution Service 3.0
RP270: 7/25/2009 12:05:52 AM - Software Distribution Service 3.0
RP271: 7/25/2009 12:08:47 AM - Software Distribution Service 3.0
RP272: 7/25/2009 12:11:39 AM - Software Distribution Service 3.0
RP273: 7/25/2009 12:14:35 AM - Software Distribution Service 3.0
RP274: 7/25/2009 12:17:29 AM - Software Distribution Service 3.0
RP275: 7/25/2009 12:20:30 AM - Software Distribution Service 3.0
RP276: 7/25/2009 12:23:19 AM - Software Distribution Service 3.0
RP277: 7/25/2009 12:26:12 AM - Software Distribution Service 3.0
RP278: 7/25/2009 12:29:01 AM - Software Distribution Service 3.0
RP279: 7/25/2009 12:31:55 AM - Software Distribution Service 3.0
RP280: 7/25/2009 12:34:50 AM - Software Distribution Service 3.0
RP281: 7/25/2009 12:37:45 AM - Software Distribution Service 3.0
RP282: 7/25/2009 12:40:41 AM - Software Distribution Service 3.0
RP283: 7/25/2009 12:43:34 AM - Software Distribution Service 3.0
RP284: 7/25/2009 12:46:27 AM - Software Distribution Service 3.0
RP285: 7/25/2009 12:49:22 AM - Software Distribution Service 3.0
RP286: 7/25/2009 12:52:27 AM - Software Distribution Service 3.0
RP287: 7/25/2009 12:55:18 AM - Software Distribution Service 3.0
RP288: 7/25/2009 12:58:16 AM - Software Distribution Service 3.0
RP289: 7/25/2009 1:01:08 AM - Software Distribution Service 3.0
RP290: 7/25/2009 1:04:02 AM - Software Distribution Service 3.0
RP291: 7/25/2009 1:07:07 AM - Software Distribution Service 3.0
RP292: 7/25/2009 1:09:56 AM - Software Distribution Service 3.0
RP293: 7/25/2009 1:12:51 AM - Software Distribution Service 3.0
RP294: 7/25/2009 1:15:56 AM - Software Distribution Service 3.0
RP295: 7/25/2009 1:18:56 AM - Software Distribution Service 3.0
RP296: 7/25/2009 1:21:52 AM - Software Distribution Service 3.0
RP297: 7/25/2009 1:24:50 AM - Software Distribution Service 3.0
RP298: 7/25/2009 1:27:51 AM - Software Distribution Service 3.0
RP299: 7/25/2009 1:30:43 AM - Software Distribution Service 3.0
RP300: 7/25/2009 1:33:45 AM - Software Distribution Service 3.0
RP301: 7/25/2009 1:36:41 AM - Software Distribution Service 3.0
RP302: 7/25/2009 1:39:46 AM - Software Distribution Service 3.0
RP303: 7/25/2009 1:42:42 AM - Software Distribution Service 3.0
RP304: 7/25/2009 1:45:44 AM - Software Distribution Service 3.0
RP305: 7/25/2009 1:48:39 AM - Software Distribution Service 3.0
RP306: 7/25/2009 1:51:41 AM - Software Distribution Service 3.0
RP307: 7/25/2009 1:54:40 AM - Software Distribution Service 3.0
RP308: 7/25/2009 1:57:36 AM - Software Distribution Service 3.0
RP309: 7/25/2009 2:00:43 AM - Software Distribution Service 3.0
RP310: 7/25/2009 2:03:49 AM - Software Distribution Service 3.0
RP311: 7/25/2009 2:06:52 AM - Software Distribution Service 3.0
RP312: 7/25/2009 2:10:08 AM - Software Distribution Service 3.0
RP313: 7/25/2009 2:13:23 AM - Software Distribution Service 3.0
RP314: 11/16/2009 2:49:35 PM - Software Distribution Service 3.0
RP315: 11/16/2009 8:46:57 PM - Software Distribution Service 3.0
RP316: 11/16/2009 9:17:58 PM - Restore Operation
RP317: 11/16/2009 10:48:52 PM - Software Distribution Service 3.0
RP318: 11/20/2009 6:44:05 PM - Software Distribution Service 3.0

==== Installed Programs ======================


µTorrent
2007 Microsoft Office system
3GP Video Converter 3
Activation Assistant for the 2007 Microsoft Office suites
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Flash Player 10 ActiveX
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Stock Photos 1.0
Altiris Software Virtualization Agent
Ask Toolbar
Business Contact Manager for Outlook 2007 SP1
CleanUp!
Comodo HopSurf
COMODO Internet Security
ConvertXtoDVD 3.3.4.106e
Corel Paint Shop Pro X
Fraps (remove only)
GameSpy Arcade
High Definition Audio Driver Package - KB888111
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 2.0 (KB922981)
Hotfix for Microsoft .NET Framework 2.0 (KB923319)
Hotfix for Windows XP (KB895246)
Hotfix for Windows XP (KB909095)
Hotfix for Windows XP (KB923232)
Hotfix for Windows XP (KB952117-v2)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB970653-v3)
HP Backup and Recovery Manager
HP Help and Support
Intel® Graphics Media Accelerator Driver
Intel® Network Connections 13.1.33.0
InterVideo Register Manager
InterVideo WinDVD
IZArc 4.0 beta 1
Java™ 6 Update 7
Malwarebytes' Anti-Malware
Media Player Codec Pack 3.5.0
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0
Microsoft .NET Framework 3.0
Microsoft Halo
Microsoft MPEG-4 VKI Video Codec V1/V2/V3
Microsoft Office 2003 Web Components
Microsoft Office 2007 Primary Interop Assemblies
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional Hybrid 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Small Business Connectivity Components
Microsoft Office Word MUI (English) 2007
Microsoft Software Update for Web Folders (English) 12
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
MSN
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 Parser and SDK
MSXML 6 Service Pack 2 (KB954459)
Net Nanny 5 (Remove Only)
Net Nanny Parental Controls 6.0
PDF Complete
PowerISO
Realtek High Definition Audio Driver
Security Update for 2007 Microsoft Office System (KB951550)
Security Update for 2007 Microsoft Office System (KB951944)
Security Update for 2007 Microsoft Office System (KB960003)
Security Update for Microsoft Office Excel 2007 (KB959997)
Security Update for Microsoft Office OneNote 2007 (KB950130)
Security Update for Microsoft Office PowerPoint 2007 (KB951338)
Security Update for Microsoft Office Publisher 2007 (KB950114)
Security Update for Microsoft Office system 2007 (KB954326)
Security Update for Microsoft Office system 2007 (KB956828)
Security Update for Microsoft Office Word 2007 (KB956358)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB944338-v2)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958470)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB963027)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969897)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971032)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975467)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office Outlook 2007 (KB952142)
Update for Office 2007 (KB934391)
Update for Office System 2007 Setup (KB929722)
Update for Outlook 2007 Junk Email Filter (kb975960)
Update for Windows XP (KB898461)
Update for Windows XP (KB911164)
Update for Windows XP (KB925720)
Update for Windows XP (KB931836)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
Verification Engine
WebFldrs XP
WinAVI Video Converter
Window Washer
Windows Communication Foundation
Windows Genuine Advantage Notifications (KB905474)
Windows Imaging Component
Windows Installer 3.1 (KB893803)
Windows Presentation Foundation
Windows Workflow Foundation
Windows XP Hotfix - KB815304
Windows XP Hotfix - KB885222
Windows XP Hotfix - KB886199
Windows XP Hotfix - KB889673
WinRAR archiver
XML Paper Specification Shared Components Pack 1.0
XviD MPEG-4 Video Codec
ZD Soft Screen Recorder
ZD Soft Screen Video Decoder

==== Event Viewer Messages From Past Week ========

11/16/2009 9:27:50 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88d00390, parameter3 88d00504, parameter4 805d1650.
11/16/2009 9:27:46 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dc9da0, parameter3 88dc9f14, parameter4 805d1650.
11/16/2009 9:26:33 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88cfc020, parameter3 88cfc194, parameter4 805d1650.
11/16/2009 9:26:29 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88d95898, parameter3 88d95a0c, parameter4 805d1650.
11/16/2009 9:26:03 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88d8cbc0, parameter3 88d8cd34, parameter4 805d1650.
11/16/2009 9:22:27 PM, error: Service Control Manager [7034] - The COMODO Internet Security Helper Service service terminated unexpectedly. It has done this 1 time(s).
11/16/2009 9:16:06 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88d17378, parameter3 88d174ec, parameter4 805d1650.
11/16/2009 9:15:23 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88d72da0, parameter3 88d72f14, parameter4 805d1650.
11/16/2009 9:15:19 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88db6898, parameter3 88db6a0c, parameter4 805d1650.
11/16/2009 9:15:16 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88db68a8, parameter3 88db6a1c, parameter4 805d1650.
11/16/2009 9:15:13 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88cf1360, parameter3 88cf14d4, parameter4 805d1650.
11/16/2009 9:15:03 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88de4898, parameter3 88de4a0c, parameter4 805d1650.
11/16/2009 9:14:34 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88db0020, parameter3 88db0194, parameter4 805d1650.
11/16/2009 9:13:55 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88d38898, parameter3 88d38a0c, parameter4 805d1650.
11/16/2009 9:13:50 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88ddb8b0, parameter3 88ddba24, parameter4 805d1650.
11/16/2009 9:13:47 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88de2da0, parameter3 88de2f14, parameter4 805d1650.
11/16/2009 9:13:43 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88db8cd8, parameter3 88db8e4c, parameter4 805d1650.
11/16/2009 9:13:28 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88de8898, parameter3 88de8a0c, parameter4 805d1650.
11/16/2009 9:12:53 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88db7da0, parameter3 88db7f14, parameter4 805d1650.
11/16/2009 9:11:53 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dcd390, parameter3 88dcd504, parameter4 805d1650.
11/16/2009 9:11:49 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dbe2f0, parameter3 88dbe464, parameter4 805d1650.
11/16/2009 9:11:46 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dd68a8, parameter3 88dd6a1c, parameter4 805d1650.
11/16/2009 9:11:43 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88d16390, parameter3 88d16504, parameter4 805d1650.
11/16/2009 9:11:39 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dc2da0, parameter3 88dc2f14, parameter4 805d1650.
11/16/2009 9:11:35 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dd0820, parameter3 88dd0994, parameter4 805d1650.
11/16/2009 9:07:46 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dba898, parameter3 88dbaa0c, parameter4 805d1650.
11/16/2009 8:59:36 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Office 2007 (KB934391).
11/16/2009 8:59:36 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB975960).
11/16/2009 8:59:36 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows XP (KB960859).
11/16/2009 8:59:36 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows XP (KB958869).
11/16/2009 8:59:36 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Cumulative Security Update for Internet Explorer 6 for Windows XP (KB974455).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Update for Business Contact Manager for Outlook 2007 (KB946140).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows XP (KB971657).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows XP (KB969059).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP 2 (KB954155).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for the 2007 Microsoft Office System (KB954326).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft Office Word 2007 (KB956358).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft Office Web Components (KB947319).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft Office Outlook 2007 (KB946983).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Microsoft Office 2007 (KB951550).
11/16/2009 8:58:46 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Internet Explorer 8 for Windows XP.
11/16/2009 8:58:45 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706be: Windows Malicious Software Removal Tool - November 2009 (KB890830).
11/16/2009 8:58:45 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for Windows XP (KB971557).
11/16/2009 8:58:45 PM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x800706ba: Security Update for the 2007 Microsoft Office System (KB951944).
11/16/2009 8:45:23 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dab6e0, parameter3 88dab854, parameter4 805d1650.
11/16/2009 8:45:18 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88cff898, parameter3 88cffa0c, parameter4 805d1650.
11/16/2009 8:45:12 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88dd6da0, parameter3 88dd6f14, parameter4 805d1650.
11/16/2009 8:40:48 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
11/16/2009 8:40:44 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
11/16/2009 3:57:32 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD cmdGuard cmdHlp Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SCDEmu Tcpip WS2IFSL
11/16/2009 3:57:32 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
11/16/2009 3:57:32 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/16/2009 3:57:32 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
11/16/2009 3:57:32 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
11/16/2009 2:48:45 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88e2e898, parameter3 88e2ea0c, parameter4 805d1650.
11/16/2009 10:47:48 PM, error: System Error [1003] - Error code 000000f4, parameter1 00000003, parameter2 88d767b8, parameter3 88d7692c, parameter4 805d1650.

==== End Of File ===========================


DDS (Ver_09-10-26.01) - NTFSx86 MINIMAL
Run by mom at 18:54:02.53 on Fri 11/20/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2013.1762 [GMT -5:00]

AV: COMODO Antivirus *On-access scanning enabled* (Outdated) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}
FW: COMODO Firewall *enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\mom\Desktop\dds.scr

============== Pseudo HJT Report ===============

mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=92&bd=all&pf=cmdt
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=92&bd=all&pf=cmdt
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GRA8E1~1.DLL
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
BHO: Comodo VerificationEngine: {a968a4b4-c492-4834-b651-17602c3885c8} - c:\program files\comodo\vengine\VEngineIE32.dll
TB: {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
TB: HopSurf toolbar: {e9fab13d-4600-49e1-90d1-ee961c859d39} - c:\program files\comodo\hopsurftoolbar\HopSurfToolbar_IE.dll
uRun: [Advanced SystemCare 3] "c:\program files\iobit\advanced systemcare 3\AWC.exe" /startup
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Window Washer] c:\program files\webroot\washer\wwDisp.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [PDF Complete] c:\program files\pdf complete\pdfsty.exe
mRun: [SetRefresh] c:\program files\compaq\setrefresh\SetRefresh.exe
mRun: [Recguard] c:\windows\sminst\Recguard.exe
mRun: [Reminder] c:\windows\creator\Remind_XP.exe
mRun: [Scheduler] c:\windows\sminst\Scheduler.exe
mRun: [IObit Security 360] c:\program files\iobit\iobit security 360\IStray.exe
mRun: [NNTray] c:\program files\net nanny\nnstart.exe
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [COMODO Internet Security] "c:\documents and settings\all users\comodo\comodo internet security\cfp.exe" -h
mRun: [VEngine] c:\program files\comodo\vengine\VEngine.exe
mRun: [HTV Agent] c:\documents and settings\mom\my documents\htv\HTV.exe
mRun: [cwcptray] c:\program files\contentwatch\internet protection\cwtray.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
StartupFolder: c:\docume~1\mom\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
IE: {ED98F8D1-09AC-4107-B2FF-91DBE011B0C5} - {6BBCFF8E-D837-4DA4-9141-1F645B34A179} - c:\program files\comodo\hopsurftoolbar\HopSurfToolbar_IE.dll
LSP: c:\windows\system32\cwalsp.dll
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1247615996718
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: {42B8A901-FBE4-4815-8F82-DE5BB66DA2BB} = 156.154.70.22,156.154.71.22
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\office12\GR99D3~1.DLL
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:\windows\system32\guard32.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office12\GRA8E1~1.DLL

============= SERVICES / DRIVERS ===============

S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2009-7-23 132040]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2009-7-23 25160]
S1 FSLX;FSLX;c:\windows\system32\drivers\fslx.sys [2008-7-11 191872]
S2 0308901243908944mcinstcleanup;McAfee Application Installer Cleanup (0308901243908944);c:\docume~1\admini~1\locals~1\temp\030890~1.exe c:\progra~1\common~1\mcafee\instal~1\cleanup.ini -cleanup -nolog -service --> c:\docume~1\admini~1\locals~1\temp\030890~1.exe c:\progra~1\common~1\mcafee\instal~1\cleanup.ini -cleanup -nolog -service [?]
S2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service;c:\program files\microsoft small business\business contact manager\BcmSqlStartupSvc.exe [2008-1-11 30312]
S2 CwAltaService20;ContentWatch;c:\program files\contentwatch\internet protection\cwsvc.exe [2009-7-23 2072384]
S2 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ);c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe [2008-11-24 29263712]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\pdf complete\pdfsvc.exe [2009-4-22 576024]
S3 e1yexpress;Intel® Gigabit Network Connections Driver;c:\windows\system32\drivers\e1y5132.sys [2009-4-22 243856]
S3 scrcap;scrcap;c:\windows\system32\drivers\scrcap.sys [2006-12-27 9006]

=============== Created Last 30 ================

2009-11-20 23:44:47 0 d-----w- C:\9a716b050791dca3856780
2009-11-20 23:44:41 0 d-----w- C:\c7732dfd45af8acb77a203b99d5adf3f
2009-11-20 23:33:36 0 d-----w- c:\windows\LastGood.Tmp
2009-11-17 02:54:58 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-17 02:54:56 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-17 02:44:16 0 d-----w- c:\program files\Trend Micro
2009-11-17 02:28:20 80896 ------w- c:\windows\system32\dllcache\tlntsess.exe
2009-11-17 02:28:20 76288 ------w- c:\windows\system32\dllcache\telnet.exe
2009-11-17 02:28:12 485376 ------w- c:\windows\system32\dllcache\wmspdmod.dll
2009-11-17 02:28:09 1435648 ------w- c:\windows\system32\dllcache\query.dll
2009-11-17 02:28:05 132096 ------w- c:\windows\system32\dllcache\wkssvc.dll
2009-11-17 02:28:03 84992 ------w- c:\windows\system32\dllcache\avifil32.dll
2009-11-17 02:19:59 0 d-----w- c:\windows\system32\wbem\Repository
2009-11-17 01:50:48 0 d-----w- c:\windows\ServicePackFiles
2009-11-16 20:01:50 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-16 19:49:47 0 d-----w- C:\939f6a48f9d1aedd86f7fef5

==================== Find3M ====================

2009-11-20 23:50:11 1474832 ----a-w- c:\windows\system32\drivers\sfi.dat
2009-09-18 09:56:10 18432 ------w- c:\windows\system32\dllcache\iedw.exe
2009-09-11 14:03:37 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-11 14:03:37 136192 ------w- c:\windows\system32\dllcache\msv1_0.dll
2009-09-04 20:45:26 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-09-04 20:45:26 58880 ------w- c:\windows\system32\dllcache\msasn1.dll
2009-08-26 08:16:37 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-26 08:16:37 247326 ------w- c:\windows\system32\dllcache\strmdll.dll
2009-07-24 03:28:42 1682 --sha-w- c:\windows\system32\KGyGaAvL.sys

============= FINISH: 18:54:18.31 ===============


#7 OCD

OCD

    SuperHelper

  • Malware Team
  • 5,574 posts

Posted 21 November 2009 - 11:25 AM

Hello andrew2009,

is there anyway to be able to access the internet in safe mode?

Yes there is. When booting into Safe Mode you would choose Safe Mode with Networking.

Please in the future don't use multi-colored text it is sometimes difficult to read. You also stated you have access to another computer. The tools we use are
generally not very big and should fit on a USB drive. Please download them on the good computer and then transfer them to the infected one and complete the steps.

I have a few questions for you:
  • Do you know when the problem started?
  • Have you tried using System Restore recently?
  • When booting into Safe Mode, did you select Last Known Good Configuration?
  • Do you have your Windows XP CD handy?
- - - - - Next - - - - -

Please retry the GMER scan by downloading it to the USB drive and moving it to the infected computer.
Follow the instructions from my previous post on how to run it.

- - - - - Next - - - - -

I would like for you to check your hard drive for errors

Please go to Start > Run > copy and paste the bold text below into the text field.

chkdsk /f

(the space between the k / are required)
Copy and Paste the log in your next reply.

- - - - - Next - - - - -

Please run the File Signature Verification Tool

Go to Start > Run > copy and paste the bold text below into the text field.

sigverif

Click Advanced, click Look for other files that are not digitally signed, click Browse, locate the Windows\System32\Drivers folder, and then click OK two times.
Click Start.
After Sigverif.exe is completed, a list of all unsigned drivers that are installed on your computer appears.

- - - - - Next - - - - -

On your next post please provide the following:
  • Answers to my questions
  • Gmer log.txt
  • chkdsk log
  • File Signature Verification log

OCD

Proud Graduate of WTT Classroom
Member of UNITE

Threads will be closed if no response after 5 days








If you are satisfied with the help you have received, please consider making a donation.


#8 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 23 November 2009 - 12:32 AM

ok ocd..i will replying with the steps outlined completed this evening..in only 1 color :blush:

#9 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 23 November 2009 - 08:56 PM

ok idid everything except the check disk, i couldnt because i kept getting this message "that the disc was in use and if i wanted to schedule it on next boot up". i wasnt able to do it on boot up because it kept turning off and just wouldnt in safe mode. i have to post the logs seperate because after copying and pasting i kept getting a message saying the post was to long..i couldnt upload because a recieved a message stating that i am not allowed to upload that type of file..hope that works...

1. Do you know when the problem started?

i do not recall for certain, but i think it was after installing a version of winrar i downloaded.2. Have you tried using System Restore recently?

2. Have you tried using System Restore recently?

no, i wanted to but the computer had been off for quite sometime and there was only 1 other restore point.

3. When booting into Safe Mode, did you select Last Known Good Configuration?

i chose that in regular mode when it had a problem, i chose just "safe mode" when booting intentionally in safe mode.

4. Do you have your Windows XP CD handy?

i have the cd's that came with the computer, one of them is named "Operating System CD microsoft windows XP Proffesional Service Pack 2"


GMER 1.0.15.15252 - http://www.gmer.net
Rootkit scan 2009-11-23 15:28:40
Windows 5.1.2600 Service Pack 2
Running: gmer.exe; Driver: C:\DOCUME~1\mom\LOCALS~1\Temp\pxdiipog.sys


---- User code sections - GMER 1.0.15 ----

.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] shell32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] shell32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] shell32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] shell32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] WS2_32.dll!WSASocketW 71AB39CB 7 Bytes JMP 10001E90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] WS2_32.dll!WSASocketA 71AB8769 5 Bytes JMP 10001E70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] WS2_32.dll!WSASocketW 71AB39CB 7 Bytes JMP 10001E90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] WS2_32.dll!WSASocketA 71AB8769 5 Bytes JMP 10001E70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] WS2_32.dll!WSASocketW 71AB39CB 7 Bytes JMP 10001E90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] WS2_32.dll!WSASocketA 71AB8769 5 Bytes JMP 10001E70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] WININET.dll!InternetConnectA 771C308A 5 Bytes JMP 10001E30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] WININET.dll!InternetConnectW 771CEDC8 5 Bytes JMP 10001E50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\Tcpip \Device\Ip cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\Tcp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\Udp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\RawIp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)

---- EOF - GMER 1.0.15 ----

Edited by andrew2009, 23 November 2009 - 08:58 PM.


#10 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 23 November 2009 - 09:01 PM

ok idid everything except the check disk, i couldnt because i kept getting this message "that the disc was in use and if i wanted to schedule it on next boot up". i wasnt able to do it on boot up because it kept turning off and just wouldnt in safe mode. have to post logs seperate they are to long and i have to split the sig into 2 or more posts because its to long


GMER 1.0.15.15252 - http://www.gmer.net
Rootkit scan 2009-11-23 15:28:40
Windows 5.1.2600 Service Pack 2
Running: gmer.exe; Driver: C:\DOCUME~1\mom\LOCALS~1\Temp\pxdiipog.sys


---- User code sections - GMER 1.0.15 ----

.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] shell32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] shell32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] shell32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\DOCUME~1\mom\LOCALS~1\Temp\Temporary Directory 1 for gmer.zip\gmer.exe[236] shell32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\NOTEPAD.EXE[252] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] WS2_32.dll!WSASocketW 71AB39CB 7 Bytes JMP 10001E90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\winlogon.exe[672] WS2_32.dll!WSASocketA 71AB8769 5 Bytes JMP 10001E70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\services.exe[716] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] WS2_32.dll!WSASocketW 71AB39CB 7 Bytes JMP 10001E90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] WS2_32.dll!WSASocketA 71AB8769 5 Bytes JMP 10001E70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\lsass.exe[728] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[880] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[984] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1048] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1140] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\svchost.exe[1212] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] WS2_32.dll!WSASocketW 71AB39CB 7 Bytes JMP 10001E90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] WS2_32.dll!WSASocketA 71AB8769 5 Bytes JMP 10001E70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\system32\wbem\wmiprvse.exe[1460] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtAllocateVirtualMemory 7C90CF6E 5 Bytes JMP 10001950 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtClose 7C90CFEE 5 Bytes JMP 10008B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtCreateFile 7C90D0AE 5 Bytes JMP 100018D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtCreateProcess 7C90D14E 5 Bytes JMP 10001890 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtCreateProcessEx 7C90D15E 5 Bytes JMP 100019B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtDeleteFile 7C90D23E 5 Bytes JMP 10001910 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtFreeVirtualMemory 7C90D38E 5 Bytes JMP 10001A30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtLoadDriver 7C90D46E 5 Bytes JMP 10001970 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtOpenFile 7C90D59E 5 Bytes JMP 100018F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 10001930 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 100019D0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtUnloadDriver 7C90DEBE 5 Bytes JMP 10001990 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes JMP 100018B0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!RtlAllocateHeap 7C9100C4 5 Bytes JMP 10001A10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10004550 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!LdrUnloadDll 7C916C9B 5 Bytes JMP 10008A60 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ntdll.dll!LdrGetProcedureAddress 7C9177B8 5 Bytes JMP 100019F0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CreateFileA 7C801A24 5 Bytes JMP 10001B30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 10001D90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadLibraryExW 7C801AF1 7 Bytes JMP 10001AF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadLibraryExA 7C801D4F 5 Bytes JMP 10001AD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadLibraryA 7C801D77 5 Bytes JMP 10001D30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 10001A70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 10001A50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!GetProcAddress 7C80ADB0 5 Bytes JMP 10001A90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadLibraryW 7C80AE5B 5 Bytes JMP 10001D50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!GetModuleHandleA 7C80B6B1 5 Bytes JMP 10001CF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!GetModuleHandleW 7C80E44D 5 Bytes JMP 10001D10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CreateFileW 7C810770 5 Bytes JMP 10001B50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileWithProgressW 7C81F73E 5 Bytes JMP 10001C90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileW 7C821271 5 Bytes JMP 10001C10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!OpenFile 7C821992 2 Bytes JMP 10001B10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!OpenFile + 3 7C821995 2 Bytes [7E, 93] {JLE 0xffffffffffffff95}
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CopyFileExW 7C827B42 7 Bytes JMP 10001BD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CopyFileA 7C8286FE 5 Bytes JMP 10001B70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CopyFileW 7C82F88F 5 Bytes JMP 10001B90 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!DeleteFileA 7C831EF5 5 Bytes JMP 10001CB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!DeleteFileW 7C831F7B 5 Bytes JMP 10001CD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileExW 7C8356A3 5 Bytes JMP 10001C50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileA 7C835ED7 5 Bytes JMP 10001BF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileWithProgressA 7C835EF6 5 Bytes JMP 10001C70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!MoveFileExA 7C85D653 5 Bytes JMP 10001C30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!CopyFileExA 7C85E554 5 Bytes JMP 10001BB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!WinExec 7C86158D 5 Bytes JMP 10001D70 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] kernel32.dll!LoadModule 7C86169E 5 Bytes JMP 10001AB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ADVAPI32.dll!OpenServiceW 77DE6FE5 7 Bytes JMP 10001480 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ADVAPI32.dll!OpenServiceA 77DF4C56 7 Bytes JMP 10001640 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ADVAPI32.dll!CreateServiceA 77E37359 7 Bytes JMP 10001000 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ADVAPI32.dll!CreateServiceW 77E374F1 7 Bytes JMP 10001250 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] USER32.dll!EndTask 77D89C9D 5 Bytes JMP 10008700 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] SHELL32.dll!ShellExecuteExW 7CA01823 5 Bytes JMP 10001E10 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] SHELL32.dll!ShellExecuteEx 7CA40C15 5 Bytes JMP 10001DF0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] SHELL32.dll!ShellExecuteA 7CA40F40 5 Bytes JMP 10001DB0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] SHELL32.dll!ShellExecuteW 7CAB4FD0 5 Bytes JMP 10001DD0 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ole32.dll!CoCreateInstanceEx 77525FB1 5 Bytes JMP 10008450 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] ole32.dll!CoGetClassObject 7753F356 5 Bytes JMP 10008590 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] WININET.dll!InternetConnectA 771C308A 5 Bytes JMP 10001E30 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)
.text C:\WINDOWS\Explorer.EXE[1780] WININET.dll!InternetConnectW 771CEDC8 5 Bytes JMP 10001E50 C:\WINDOWS\system32\guard32.dll (COMODO Internet Security/COMODO)

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndiswan.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisRegisterProtocol] [BA760740] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisDeregisterProtocol] [BA760780] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisCloseAdapter] [BA7606E0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)
IAT \SystemRoot\system32\DRIVERS\ndisuio.sys[NDIS.SYS!NdisOpenAdapter] [BA7607B0] inspect.sys (COMODO Internet Security Firewall Driver/COMODO)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\Tcpip \Device\Ip cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\Tcp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\Udp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)
AttachedDevice \Driver\Tcpip \Device\RawIp cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO)

---- EOF - GMER 1.0.15 ----

    Advertisements

Register to Remove


#11 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 23 November 2009 - 09:02 PM

Microsoft Signature Verification Log file generated on 11/23/2009 at 8:48 PM OS Platform: Windows 2000 (x86), Version: 5.1, Build: 2600, CSDVersion: Service Pack 2 Scan Results: Total Files: 2097, Signed: 1914, Unsigned: 182, Not Scanned: 1 User-specified search path: *.* User-specified search pattern: C:\WINDOWS\system32 File Modified Version Status Catalog Signed By ------------------ ------------ ----------- ------------ ----------- ------------------- [c:\windows\system32] $ncsp$.inf 4/22/2009 None Not Signed N/A $winnt$.inf 6/1/2009 None Not Signed N/A 12520437.cpx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher 12520850.cpx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher 6to4svc.dll 8/16/2006 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher aaaamon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher aac_parser.ax 11/23/2003 1.1.0.0 Not Signed N/A ac3config.exe 5/18/2009 None Not Signed N/A ac3file.ax 5/20/2009 None Not Signed N/A ac3filter.acm 5/18/2009 None Not Signed N/A ac3filter.ax 5/18/2009 1.3.1.0 Not Signed N/A accesor.dll 6/9/2008 None Signed N/A Intel Corporation access.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher acctres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher accwiz.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher acelpdec.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher acledit.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher aclui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher activeds.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher activeds.tlb 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher actmovie.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher actxprxy.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher admparse.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher adptif.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher adsldp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher adsldpc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher adsmsext.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher adsnds.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher adsnt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher adsnw.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher advapi32.dll 2/9/2009 2:5.1 Signed KB956572.cat Microsoft Windows Component Publisher advpack.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ahui.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher alg.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher alrsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher altarecovery.exe 6/8/2009 2.7.4.5 Not Signed N/A amcompat.tlb 4/25/2006 None Not Signed N/A amstream.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ansi.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher apcups.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher append.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher apphelp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher appmgmts.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher appmgr.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher appwiz.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher arp.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher asctrls.ocx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher asferror.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher asr_fmt.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher asr_ldm.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher asr_pfu.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher asycfilt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher at.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher atkctrs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher atl(3).dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher atl.dll 7/17/2009 2:5.1 Signed KB973507.cat Microsoft Windows Component Publisher atmadm.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher atmfd.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher atmlib.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher atmpvcno.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher atrac3.acm 4/7/2003 None Not Signed N/A atrace.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher attrib.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher audiosrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher auditusr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher authz.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher autochk.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher autoconv.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher autodisc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher autoexec.nt 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher autofmt.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher autolfn.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher avi.dll 1/10/2009 None Not Signed N/A avi2ac3filter.ax 6/3/2003 1.0.0.0 Not Signed N/A avicap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher avicap32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher avifil32.dll 6/10/2009 2:5.1 Signed KB971557.cat Microsoft Windows Component Publisher avifile.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher avmeter.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher avs.dll 1/10/2009 None Not Signed N/A avss.dll 1/10/2009 None Not Signed N/A avtapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher avwav.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher basesrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bass.dll 2/1/2007 2.3.0.2 Not Signed N/A bass_aac.dll 2/1/2007 2.3.0.0 Not Signed N/A bass_alac.dll 2/1/2007 2.3.0.0 Not Signed N/A bass_ape.dll 2/1/2007 2.3.0.0 Not Signed N/A bass_flac.dll 2/1/2007 2.3.0.2 Not Signed N/A bass_mpc.dll 2/1/2007 2.3.0.0 Not Signed N/A bass_tta.dll 2/1/2007 2.3.0.0 Not Signed N/A bass_wv.dll 2/1/2007 2.3.0.0 Not Signed N/A batmeter.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher batt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bcmms32.dll 10/29/2006 None Signed N/A Microsoft Corporation bidispl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bios1.rom 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bios4.rom 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bitsprx2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bitsprx3.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher blackbox.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher blastcln.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bootcfg.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher bootok.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bootvid.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bootvrfy.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bopomofo.uce 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher browselc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher browser.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher browseui.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher browsewm.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher bthci.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bthprops.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher bthserv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher btpanui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cabinet.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cabview.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cacls.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher calc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher camocx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher capesnpn.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cards.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher catsrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher catsrvps.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher catsrvut.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ccfgnt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cdfview.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher cdm.dll 8/6/2009 2:5.0,2:5.1,2:5.2 Signed oem15.CAT Microsoft Windows Component Publisher cdmodem.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cdosys.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cdplayer.exe.manifes 4/25/2006 None Not Signed N/A certcli.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher certmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher certmgr.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cewmdm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cfgbkend.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cfgmgr32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher charmap.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher chcp.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher chkdsk.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher chkntfs.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ciadmin.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ciadv.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cic.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cidaemon.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ciodm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cipher.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher cisvc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ckcnv.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher clb.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher clbcatex.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher clbcatq.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cleanmgr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cliconf.chm 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cliconfg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cliconfg.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cliconfg.rll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher clipbrd.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher clipsrv.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher clusapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmcfg32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmd.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmdial32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmdl32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmdlib.wsc 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher cmmgr32.hlp 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher cmmon32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmos.ram 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmpbk32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmprops.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmsetacl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmstp.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cmutil.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cnbjmon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cnetcfg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cnvfat.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher colbact.dll 7/25/2005 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher comaddin.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comcat.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comctl32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comdlg32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comm.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher command.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher commdlg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comp.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher compact.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher compatui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher compmgmt.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher compobj.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher compstui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comrepl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comsnap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comsvcs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher comuid.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher config.nt 4/25/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher config.tmp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher confmsp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher conime.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher console.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher control.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher convert.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cook3260.dll 3/18/2007 10.0.0.1625 Not Signed N/A coreaac.ax 8/12/2005 1.2.0.573 Not Signed N/A corevorbis.ax 7/9/2005 1.1.0.79 Not Signed N/A corpol.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher country.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher credui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher crtdll.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher crypt32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cryptdlg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cryptdll.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cryptext.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cryptnet.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cryptsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cryptui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cscdll.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cscript.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cscui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher csrsrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher csrss.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cssdll32.dll 6/13/2009 None Signed N/A Comodo CA Limited csseqchk.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ctfmon.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ctl3d32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ctl3dv2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ctype.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher cue2xml.js 5/15/2007 None Not Signed N/A cwalsp.dll 6/8/2009 2.7.4.7 Not Signed N/A c_037.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10000.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10006.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10007.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10010.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10017.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10029.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10079.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10081.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_10082.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1026.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1250.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1251.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1252.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1253.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1254.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1255.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1256.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1257.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_1258.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_20127.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_20261.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_20866.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_20905.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_21866.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28591.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28592.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28593.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28594.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28595.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28597.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28598.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28599.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28603.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_28605.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_437.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_500.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_737.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_775.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_850.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_852.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_855.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_857.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_860.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_861.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_863.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_865.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_866.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_869.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_874.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_875.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_932.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_936.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_949.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher c_950.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3d8.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3d8thk.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3d9.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3dim.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3dim700.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3dpmesh.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3dramp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3drm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher d3dxof.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher danim.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher dataclen.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher datime.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher davclnt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher daxctle.ocx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dbgeng.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dbghelp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dbmsrpcn.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dbnetlib.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dbnmpntw.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dcache.bin 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dcbasssource.ax 3/9/2008 1.1.1.0 Not Signed N/A dciman32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dcomcnfg.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ddeml.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ddeshare.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ddraw.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ddrawex.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher debug.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher defrag.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher desk.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher deskadp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher deskmon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher deskperf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher desktop.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher devenum.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher devmgmt.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher devmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dfrg.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dfrgfat.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dfrgntfs.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dfrgres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dfrgsnap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dfrgui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dfshim.dll 9/23/2005 2.0.50727.42 Not Signed N/A dfsshlex.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dgnet.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dgrpsetu.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dgsetup.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dhcpcsvc.dll 3/11/2005 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher dhcpmon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher

#12 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 23 November 2009 - 09:03 PM

dhcpsapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diactfrm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diantz.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher difxapi.dll 11/10/2006 None Signed N/A Microsoft Windows Component Publisher digest.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dimap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dinput.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dinput8.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskcomp.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskcopy.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskcopy.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskmgmt.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskpart.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskperf.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dispex.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher divx.dll 11/6/2008 6.8.5.9 Not Signed N/A divxa32.acm 4/1/2000 4.1.0.3920 Not Signed N/A divxdec.ax 11/6/2008 6.3.0.84 Not Signed N/A divxdech264.ax 11/20/2008 8.1.0.94 Not Signed N/A divxmedia.ax 11/6/2008 0.0.0.28 Not Signed N/A divxsm.exe 11/6/2008 6.6.1.4 Not Signed N/A divxsm.tlb 11/6/2008 None Not Signed N/A dllhost.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dllhst3g.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmadmin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmband.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmcompos.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmconfig.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmdlgs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmdskmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmdskres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmime.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmintf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmloader.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmocx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmremote.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmscript.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmserver.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmstyle.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmsynth.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmusic.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmutil.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmview.ocx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dnsapi.dll 6/20/2008 2:5.1 Signed KB951748.cat Microsoft Windows Component Publisher dnsrslvr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher docprop.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher docprop2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher doskey.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dosx.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpcdll.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher dpl100.dll 8/5/2008 1.2.0.44 Not Signed N/A dpl100.dll.manifest 11/6/2008 None Not Signed N/A dplay.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dplaysvr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dplayx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpmodemx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnaddr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnet.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnhpast.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnhupnp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnlobby.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnmodem.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnsvr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnwsock.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpserial.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpu11.dll 8/5/2008 1.1.1.3 Not Signed N/A dpugui11.dll 8/5/2008 1.1.1.3 Not Signed N/A dpus11.dll 8/5/2008 1.1.1.3 Not Signed N/A dpv11.dll 8/5/2008 1.1.1.3 Not Signed N/A dpvacm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpvoice.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpvsetup.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpvvox.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpwsock.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpwsockx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher driverquery.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher drmclien.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drmstor.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drmv2clt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drprov.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drv23260.dll 9/29/2006 6.0.7.3928 Not Signed N/A drv33260.dll 9/29/2006 6.0.7.4085 Not Signed N/A drv43260.dll 9/29/2006 6.0.7.2389 Not Signed N/A drwatson.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drwtsn32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ds16gt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ds32gt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsauth.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsdmo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsdmoprp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dskquota.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dskquoui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsmux.exe 1/10/2009 None Not Signed N/A dsound.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsound.vxd 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsound3d.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsprop.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsprpres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsquery.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dssec.dat 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dssec.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dssenh.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsuiext.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dswave.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dtsac3source.ax 11/25/2005 1.0.0.1 Not Signed N/A dtu100.dll 8/5/2008 1.2.0.44 Not Signed N/A dtu100.dll.manifest 11/6/2008 None Not Signed N/A dumprep.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher duser.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dvdplay.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dvdupgrd.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dwwin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dx7vb.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dx8vb.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dxdiag.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dxdiagn.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dxmasf.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher dxr.dll 1/10/2009 None Not Signed N/A dxtmsft.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher dxtrans.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher dxva2.dll 10/20/2006 None Signed N/A Microsoft Corporation e1000msg.dll 12/14/2007 2:5.00,2:5.1 Signed oem0.CAT Microsoft Windows Hardware Compatibility Publisher e1y5132.din 5/29/2008 2:5.00,2:5.1 Signed oem0.CAT Microsoft Windows Hardware Compatibility Publisher edit.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher edit.hlp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher edlin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher efsadu.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher ega.cpi 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher els.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher emptyregdb.dat 4/25/2006 None Not Signed N/A encapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher encdec.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eqnclass.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ersvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher es.dll 7/7/2008 2:5.1 Signed KB950974.cat Microsoft Windows Component Publisher esent.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esent97.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esentprf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esentprf.hxx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esentprf.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esentutl.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eudcedit.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eula.txt 2/27/2006 None Not Signed N/A eventcls.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eventcreate.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher eventlog.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eventquery.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher eventtriggers.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher eventvwr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eventvwr.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher evr.dll 10/20/2006 None Signed N/A Microsoft Corporation exe2bin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher expand.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher expsrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher extmgr.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher extrac32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher exts.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fastopen.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher faultrep.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fde.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher fdeploy.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher feclient.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ffdshow.ax 5/28/2009 1.0.5.2945 Not Signed N/A ffdshow.ax.manifest 7/10/2007 None Not Signed N/A ff_kerneldeint.dll 4/21/2009 None Not Signed N/A ff_liba52.dll 3/2/2009 None Not Signed N/A ff_libdts.dll 3/2/2009 None Not Signed N/A ff_libfaad2.dll 3/2/2009 None Not Signed N/A ff_libmad.dll 3/2/2009 None Not Signed N/A ff_samplerate.dll 3/2/2009 None Not Signed N/A ff_tremor.dll 3/2/2009 None Not Signed N/A ff_unrar.dll 3/2/2009 None Not Signed N/A ff_vfw.dll 4/2/2009 None Not Signed N/A ff_vfw.dll.manifest 7/10/2007 None Not Signed N/A ff_wmv9.dll 4/2/2009 None Not Signed N/A ff_x264.dll 5/25/2009 None Not Signed N/A filemgmt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher find.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher findstr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher finger.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher firewall.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fixmapi.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fldrclnr.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher fltlib.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fltmc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher flvsplitter.ax 5/3/2006 1.0.0.1 Not Signed N/A fm20.dll 10/26/2006 None Signed N/A Microsoft Corporation fm20enu.dll 10/26/2006 None Signed N/A Microsoft Corporation fmifs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fntcache.dat 11/20/2009 None Not Signed N/A fontext.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fontsub.dll 6/16/2009 2:5.1 Signed KB961371.cat Microsoft Windows Component Publisher fontview.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher forcedos.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher format.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher framebuf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher frapsvid.dll 1/14/2008 2.9.4.7037 Not Signed N/A freecell.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher fsllib32.dll 7/11/2008 None Signed N/A Altiris Inc fsmgmt.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fsquirt.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fsusd.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fsutil.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ftp.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ftsrch.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fwcfg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher g711codc.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gb2312.uce 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gcdef.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gdi.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gdi32.dll 10/23/2008 2:5.1 Signed KB956802.cat Microsoft Windows Component Publisher gdsmux.exe 1/10/2009 None Not Signed N/A geo.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher getmac.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher getuname.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher glmf32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher glu32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gpedit.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher gpedit.msc 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher gpkcsp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gpkrsrc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gpresult.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher gptext.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher gpupdate.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher graftabl.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher graphics.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher graphics.pro 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher grpconv.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher guard32.dll 7/23/2009 None Signed N/A Comodo Security Solutions h323.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher h323msp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hal.dll 11/15/2004 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher hccoin.dll 8/4/2004 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hccutils.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher hdaprop.dll 1/7/2005 2:5.1 Signed KB888111WXPSP2.cat Microsoft Windows XP Publisher hdashcut.exe 1/7/2005 2:5.1 Signed KB888111WXPSP2.cat Microsoft Windows XP Publisher hdaudres.dll 1/7/2005 2:5.1 Signed KB888111WXPSP2.cat Microsoft Windows XP Publisher hdwwiz.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher help.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hhactivex.dll 9/9/1999 1.0.0.1 Not Signed N/A hhctrl.ocx 5/26/2005 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher hhsetup.dll 5/26/2005 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher hid.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hidphone.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher himem.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hkcmd.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher hlink.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hnetcfg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hnetmon.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher hnetwiz.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher homepage.inf 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hookres.dll 9/24/2002 5.0.2.4 Not Signed N/A hostname.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hotplug.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hticons.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher html.iec 9/18/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher httpapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher htui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher huffyuv.dll 12/19/2003 2.2.0.1 Not Signed N/A hypertrm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher i81xdnt5.dll 8/3/2004 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iac25_32.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasacct.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasads.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iashlpr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasnap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iaspolcy.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasrad.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasrecst.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iassam.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iassdo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iassvcs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icaapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icardagt.exe 10/30/2006 None Signed N/A Microsoft Corporation icardres.dll 10/30/2006 None Signed N/A Microsoft Corporation icardres.dll.mui 10/30/2006 None Signed N/A Microsoft Corporation iccvid.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icfgnt5.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icm32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icmp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icmui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iconv.dll 7/4/2007 1.9.0.0 Not Signed N/A icwdial.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icwphbk.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ideograf.uce 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher idq.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ie4uinit.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieakeng.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieaksie.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieakui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iedkcs32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieencode.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher iepeers.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher iernonce.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iesetup.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieuinit.inf 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher iexpress.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ifmon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ifsutil.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ig4dev32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher ig4icd32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igcompkrng500.bin 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxcfg.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxcoin_v4964.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxcpl.cpl 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxdev.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxdo.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxexps.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxext.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxpers.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxpph.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrara.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrchs.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrcht.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrcsy.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrdan.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrdeu.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrell.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrenu.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxresp.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxress.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrfin.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrfra.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrheb.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrhun.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrita.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrjpn.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrkor.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrnld.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrnor.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrplk.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrptb.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrptg.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrrus.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrsky.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrslv.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrsve.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrtha.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrtrk.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxsrvc.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxsrvc.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxtray.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxzoom.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igkrng500.bin 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igmpagnt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher igxpdv32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxpdx32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxpgd32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxprd32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxpun.exe 7/1/2008 None Signed N/A Intel Corporation igxpxk32.vp 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxpxs32.vp 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher iissuba.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher ils.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imaadp32.acm 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imagehlp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imapi.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imeshare.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imgutil.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imm32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetcfg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetcomm.dll 4/11/2008 2:5.1 Signed KB951066.cat Microsoft Windows Component Publisher inetcpl.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetcplc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetmib1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetpp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetppui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher infocardapi.dll 10/30/2006 3.0.4506.30 Not Signed N/A infocardcpl.cpl 10/30/2006 3.0.4506.30 Not Signed N/A infosoft.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher initpki.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inked.dll 10/26/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher input.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inseng.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher instcat.sql 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher intl.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iologmsg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipconf.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipconfig.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iphlpapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipmontr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipnathlp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ippromon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iprop.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iprtprio.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iprtrmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipsec6.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipsecsnp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipsecsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipsmsnap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipv6.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipv6mon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxmontr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxpromn.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxrip.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxroute.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxrtmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxsap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher

#13 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 23 November 2009 - 09:05 PM

dhcpsapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diactfrm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diantz.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher difxapi.dll 11/10/2006 None Signed N/A Microsoft Windows Component Publisher digest.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dimap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dinput.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dinput8.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskcomp.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskcopy.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskcopy.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskmgmt.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskpart.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher diskperf.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dispex.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher divx.dll 11/6/2008 6.8.5.9 Not Signed N/A divxa32.acm 4/1/2000 4.1.0.3920 Not Signed N/A divxdec.ax 11/6/2008 6.3.0.84 Not Signed N/A divxdech264.ax 11/20/2008 8.1.0.94 Not Signed N/A divxmedia.ax 11/6/2008 0.0.0.28 Not Signed N/A divxsm.exe 11/6/2008 6.6.1.4 Not Signed N/A divxsm.tlb 11/6/2008 None Not Signed N/A dllhost.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dllhst3g.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmadmin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmband.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmcompos.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmconfig.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmdlgs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmdskmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmdskres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmime.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmintf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmloader.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmocx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmremote.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmscript.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmserver.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmstyle.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmsynth.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmusic.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmutil.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dmview.ocx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dnsapi.dll 6/20/2008 2:5.1 Signed KB951748.cat Microsoft Windows Component Publisher dnsrslvr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher docprop.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher docprop2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher doskey.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dosx.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpcdll.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher dpl100.dll 8/5/2008 1.2.0.44 Not Signed N/A dpl100.dll.manifest 11/6/2008 None Not Signed N/A dplay.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dplaysvr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dplayx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpmodemx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnaddr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnet.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnhpast.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnhupnp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnlobby.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnmodem.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnsvr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpnwsock.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpserial.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpu11.dll 8/5/2008 1.1.1.3 Not Signed N/A dpugui11.dll 8/5/2008 1.1.1.3 Not Signed N/A dpus11.dll 8/5/2008 1.1.1.3 Not Signed N/A dpv11.dll 8/5/2008 1.1.1.3 Not Signed N/A dpvacm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpvoice.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpvsetup.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpvvox.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpwsock.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dpwsockx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher driverquery.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher drmclien.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drmstor.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drmv2clt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drprov.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drv23260.dll 9/29/2006 6.0.7.3928 Not Signed N/A drv33260.dll 9/29/2006 6.0.7.4085 Not Signed N/A drv43260.dll 9/29/2006 6.0.7.2389 Not Signed N/A drwatson.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher drwtsn32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ds16gt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ds32gt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsauth.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsdmo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsdmoprp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dskquota.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dskquoui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsmux.exe 1/10/2009 None Not Signed N/A dsound.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsound.vxd 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsound3d.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsprop.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsprpres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsquery.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dssec.dat 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dssec.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dssenh.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dsuiext.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dswave.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dtsac3source.ax 11/25/2005 1.0.0.1 Not Signed N/A dtu100.dll 8/5/2008 1.2.0.44 Not Signed N/A dtu100.dll.manifest 11/6/2008 None Not Signed N/A dumprep.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher duser.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dvdplay.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dvdupgrd.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dwwin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dx7vb.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dx8vb.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dxdiag.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dxdiagn.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher dxmasf.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher dxr.dll 1/10/2009 None Not Signed N/A dxtmsft.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher dxtrans.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher dxva2.dll 10/20/2006 None Signed N/A Microsoft Corporation e1000msg.dll 12/14/2007 2:5.00,2:5.1 Signed oem0.CAT Microsoft Windows Hardware Compatibility Publisher e1y5132.din 5/29/2008 2:5.00,2:5.1 Signed oem0.CAT Microsoft Windows Hardware Compatibility Publisher edit.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher edit.hlp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher edlin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher efsadu.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher ega.cpi 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher els.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher emptyregdb.dat 4/25/2006 None Not Signed N/A encapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher encdec.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eqnclass.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ersvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher es.dll 7/7/2008 2:5.1 Signed KB950974.cat Microsoft Windows Component Publisher esent.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esent97.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esentprf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esentprf.hxx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esentprf.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher esentutl.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eudcedit.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eula.txt 2/27/2006 None Not Signed N/A eventcls.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eventcreate.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher eventlog.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eventquery.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher eventtriggers.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher eventvwr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher eventvwr.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher evr.dll 10/20/2006 None Signed N/A Microsoft Corporation exe2bin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher expand.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher expsrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher extmgr.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher extrac32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher exts.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fastopen.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher faultrep.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fde.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher fdeploy.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher feclient.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ffdshow.ax 5/28/2009 1.0.5.2945 Not Signed N/A ffdshow.ax.manifest 7/10/2007 None Not Signed N/A ff_kerneldeint.dll 4/21/2009 None Not Signed N/A ff_liba52.dll 3/2/2009 None Not Signed N/A ff_libdts.dll 3/2/2009 None Not Signed N/A ff_libfaad2.dll 3/2/2009 None Not Signed N/A ff_libmad.dll 3/2/2009 None Not Signed N/A ff_samplerate.dll 3/2/2009 None Not Signed N/A ff_tremor.dll 3/2/2009 None Not Signed N/A ff_unrar.dll 3/2/2009 None Not Signed N/A ff_vfw.dll 4/2/2009 None Not Signed N/A ff_vfw.dll.manifest 7/10/2007 None Not Signed N/A ff_wmv9.dll 4/2/2009 None Not Signed N/A ff_x264.dll 5/25/2009 None Not Signed N/A filemgmt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher find.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher findstr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher finger.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher firewall.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fixmapi.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fldrclnr.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher fltlib.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fltmc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher flvsplitter.ax 5/3/2006 1.0.0.1 Not Signed N/A fm20.dll 10/26/2006 None Signed N/A Microsoft Corporation fm20enu.dll 10/26/2006 None Signed N/A Microsoft Corporation fmifs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fntcache.dat 11/20/2009 None Not Signed N/A fontext.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fontsub.dll 6/16/2009 2:5.1 Signed KB961371.cat Microsoft Windows Component Publisher fontview.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher forcedos.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher format.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher framebuf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher frapsvid.dll 1/14/2008 2.9.4.7037 Not Signed N/A freecell.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher fsllib32.dll 7/11/2008 None Signed N/A Altiris Inc fsmgmt.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fsquirt.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fsusd.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fsutil.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ftp.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ftsrch.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher fwcfg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher g711codc.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gb2312.uce 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gcdef.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gdi.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gdi32.dll 10/23/2008 2:5.1 Signed KB956802.cat Microsoft Windows Component Publisher gdsmux.exe 1/10/2009 None Not Signed N/A geo.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher getmac.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher getuname.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher glmf32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher glu32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gpedit.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher gpedit.msc 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher gpkcsp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gpkrsrc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher gpresult.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher gptext.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher gpupdate.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher graftabl.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher graphics.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher graphics.pro 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher grpconv.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher guard32.dll 7/23/2009 None Signed N/A Comodo Security Solutions h323.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher h323msp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hal.dll 11/15/2004 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher hccoin.dll 8/4/2004 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hccutils.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher hdaprop.dll 1/7/2005 2:5.1 Signed KB888111WXPSP2.cat Microsoft Windows XP Publisher hdashcut.exe 1/7/2005 2:5.1 Signed KB888111WXPSP2.cat Microsoft Windows XP Publisher hdaudres.dll 1/7/2005 2:5.1 Signed KB888111WXPSP2.cat Microsoft Windows XP Publisher hdwwiz.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher help.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hhactivex.dll 9/9/1999 1.0.0.1 Not Signed N/A hhctrl.ocx 5/26/2005 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher hhsetup.dll 5/26/2005 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher hid.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hidphone.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher himem.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hkcmd.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher hlink.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hnetcfg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hnetmon.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher hnetwiz.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher homepage.inf 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hookres.dll 9/24/2002 5.0.2.4 Not Signed N/A hostname.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hotplug.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher hticons.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher html.iec 9/18/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher httpapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher htui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher huffyuv.dll 12/19/2003 2.2.0.1 Not Signed N/A hypertrm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher i81xdnt5.dll 8/3/2004 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iac25_32.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasacct.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasads.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iashlpr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasnap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iaspolcy.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasrad.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iasrecst.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iassam.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iassdo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iassvcs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icaapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icardagt.exe 10/30/2006 None Signed N/A Microsoft Corporation icardres.dll 10/30/2006 None Signed N/A Microsoft Corporation icardres.dll.mui 10/30/2006 None Signed N/A Microsoft Corporation iccvid.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icfgnt5.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icm32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icmp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icmui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iconv.dll 7/4/2007 1.9.0.0 Not Signed N/A icwdial.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher icwphbk.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ideograf.uce 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher idq.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ie4uinit.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieakeng.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieaksie.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieakui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iedkcs32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieencode.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher iepeers.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher iernonce.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iesetup.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ieuinit.inf 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher iexpress.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ifmon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ifsutil.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ig4dev32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher ig4icd32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igcompkrng500.bin 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxcfg.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxcoin_v4964.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxcpl.cpl 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxdev.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxdo.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxexps.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxext.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxpers.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxpph.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrara.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrchs.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrcht.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrcsy.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrdan.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrdeu.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrell.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrenu.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxresp.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxress.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrfin.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrfra.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrheb.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrhun.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrita.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrjpn.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrkor.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrnld.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrnor.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrplk.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrptb.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrptg.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrrus.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrsky.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrslv.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrsve.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrtha.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxrtrk.lrc 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxsrvc.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxsrvc.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxtray.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igfxzoom.exe 7/1/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igkrng500.bin 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igmpagnt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher igxpdv32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxpdx32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxpgd32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxprd32.dll 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxpun.exe 7/1/2008 None Signed N/A Intel Corporation igxpxk32.vp 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher igxpxs32.vp 6/27/2008 2:5.00,2:5.1 Signed oem2.CAT Microsoft Windows Hardware Compatibility Publisher iissuba.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher ils.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imaadp32.acm 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imagehlp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imapi.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imeshare.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imgutil.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher imm32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetcfg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetcomm.dll 4/11/2008 2:5.1 Signed KB951066.cat Microsoft Windows Component Publisher inetcpl.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetcplc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetmib1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetpp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetppui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inetres.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher infocardapi.dll 10/30/2006 3.0.4506.30 Not Signed N/A infocardcpl.cpl 10/30/2006 3.0.4506.30 Not Signed N/A infosoft.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher initpki.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inked.dll 10/26/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher input.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher inseng.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher instcat.sql 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher intl.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iologmsg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipconf.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipconfig.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iphlpapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipmontr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipnathlp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ippromon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iprop.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iprtprio.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iprtrmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipsec6.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipsecsnp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipsecsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipsmsnap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipv6.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipv6mon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxmontr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxpromn.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxrip.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxroute.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxrtmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ipxsap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher

#14 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 23 November 2009 - 09:10 PM

ipxwan.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ir32_32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ir41_32.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ir41_qc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ir41_qcx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ir50_32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ir50_qc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ir50_qcx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher irclass.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher irprops.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher isign32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher isrdbg32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher itircl.dll 5/26/2005 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher itss.dll 5/26/2005 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher iuengine.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ivfsrc.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ivinav.ax 2/14/2006 7.0.27.172 Not Signed N/A iviresize.dll 11/22/2002 None Not Signed N/A iviresizea6.dll 11/22/2002 None Not Signed N/A iviresizem6.dll 11/22/2002 None Not Signed N/A iviresizep6.dll 11/22/2002 None Not Signed N/A iviresizepx.dll 11/22/2002 None Not Signed N/A iviresizew7.dll 11/22/2002 None Not Signed N/A ivivideo.ax 4/17/2006 7.0.27.191 Not Signed N/A ixsso.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher iyuv_32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher java.exe 6/10/2008 6.0.70.6 Not Signed N/A javacpl.cpl 6/10/2008 6.0.70.6 Not Signed N/A javaw.exe 6/10/2008 6.0.70.6 Not Signed N/A javaws.exe 6/10/2008 6.0.70.6 Not Signed N/A jet500.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher jgaw400.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher jgdw400.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher jgmd400.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher jgpl400.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher jgsd400.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher jgsh400.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher jobexec.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher joy.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher jscript.dll 8/21/2009 2:5.1 Signed KB971961.cat Microsoft Windows Component Publisher jsproxy.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher jupdate-1.6.0_07-b06 4/22/2009 None Not Signed N/A kanji_1.uce 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kanji_2.uce 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kb16.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdal.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdaze.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdazel.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdbe.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdbene.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdblr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdbr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdbu.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdca.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdcan.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdcr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdcz.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdcz1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdcz2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdda.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbddv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdes.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdest.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdfc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdfi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdfi1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdfo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdfr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdgae.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdgkl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdgr1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdhe.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdhe220.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdhe319.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdhela2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdhela3.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdhept.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdhu.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdhu1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdic.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdinbe1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdinben.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdinmal.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdir.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdit.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdit142.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdkaz.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdkyr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdla.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdlt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdlt1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdlv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdlv1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdmac.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdmaori.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdmlt47.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdmlt48.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdmon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdne.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdnec.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdno.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdno1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdpl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdpl1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdpo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdro.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdru.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdru1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdsf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdsg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdsl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdsl1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdsmsfi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdsmsno.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdsp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdsw.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdtat.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdtuf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdtuq.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbduk.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdukx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdur.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdus.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdusl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdusr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdusx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbduzb.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdycc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kbdycl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kd1394.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kdcom.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kerberos(3).dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kerberos.dll 6/25/2009 2:5.1 Signed KB968389.cat Microsoft Windows Component Publisher kernel32.dll 3/21/2009 2:5.1 Signed KB959426.cat Microsoft Windows Component Publisher key01.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher keyboard.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher keyboard.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher keymgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher kgygaavl.sys 7/23/2009 None Not Signed N/A kmddsp.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher korean.uce 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher krnl386.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ksproxy.ax 8/4/2004 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ksuser.dll 8/4/2004 2:5.1 Signed NT5.CAT Microsoft Windows Publisher l3codeca.acm 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher l3codecx.ax 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher label.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lameacm.acm 9/24/2008 0.9.1.0 Not Signed N/A lame_acm.xml 4/7/2002 None Not Signed N/A langwrbk.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lanman.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher laprxy.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher legitcheckcontrol.dl 3/10/2009 None Signed N/A Microsoft Corporation libavcodec.dll 5/28/2009 None Not Signed N/A libdivx.dll 11/6/2008 0.9.8.2 Not Signed N/A libexpat.dll 6/8/2009 None Not Signed N/A libmpeg2_ff.dll 4/21/2009 None Not Signed N/A libmplayer.dll 5/17/2009 None Not Signed N/A libxml2_cw.dll 6/8/2009 None Not Signed N/A licdll.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher licmgr10.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher licwmi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lights.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher linkinfo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lmhsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lmrt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lnkstub.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher loadfix.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher loadperf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher locale.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher localsec.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher localspl.dll 5/7/2009 2:5.1 Signed KB961501.cat Microsoft Windows Component Publisher localui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher locator.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lodctr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher logagent.exe 6/10/2008 2:5.1 Signed KB952069.cat Microsoft Windows Component Publisher loghours.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher login.cmd 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher logman.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher logoff.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher logon.scr 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher logonui.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher logonui.exe.manifest 4/25/2006 None Not Signed N/A lpk.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lpq.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lpr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lprhelp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lprmonui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lsasrv.dll 6/25/2009 2:5.1 Signed KB968389.cat Microsoft Windows Component Publisher lsass.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lusrmgr.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lz32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher lzexpand.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher l_except.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher l_intl.nls 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher magnify.exe 10/4/2006 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher mag_hook.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher main.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher makecab.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mapi32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mapistub.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mapisvc.inf 11/16/2009 None Not Signed N/A matroskasplitter.ax 3/10/2006 1.0.2.9 Not Signed N/A mcastmib.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mcd32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mcdsrv32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mchgrcoi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciavi.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciavi32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mcicda.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciole16.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciole32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciqtz32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciseq.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciseq.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciwave.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mciwave.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mdhcp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mdminst.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mdwmdmsp.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mem.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mf3216.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mfc40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mfc40u.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mfc42.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mfc42u.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mfc71.dll 3/19/2003 7.10.3077.0 Not Signed N/A mfcsubs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mgmtapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mib.bin 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher midimap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher miglibnt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher migpwd.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher milcore.dll 10/20/2006 None Signed N/A Microsoft Corporation mimefilt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mkunicode.dll 1/10/2009 None Not Signed N/A mkv2vfr.exe 1/10/2009 None Not Signed N/A mkx.dll 1/10/2009 None Not Signed N/A mkzlib.dll 1/10/2009 None Not Signed N/A mlang.dat 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mlang.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mll_hp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mll_mtf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mll_qic.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmcbase.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmcndmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmcshext.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmdriver.inf 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mmdrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmfinfo.dll 1/10/2009 None Not Signed N/A mmfutil.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmsys.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmsystem.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmtask.tsk 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mmutilse.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mnmdd.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mnmsrvc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mobsync.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mobsync.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mode.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher modemui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher modex.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher more.com 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher moricons.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mountvol.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mouse.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mp4.dll 1/10/2009 None Not Signed N/A mp43dmod.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mp4sdmod.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mpeg2data.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mpg2splt.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mpg4c32.dll 1/7/2001 4.1.0.3920 Not Signed N/A mpg4dmod.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mpg4ds32.ax 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mplay32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mpnotify.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mpr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mprapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mprddm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mprdim.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mprmsg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mprui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mqad.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqbkup.exe 6/22/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqcertui.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqdscli.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqgentr.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqise.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqlogmgr.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqoa.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqoa.tlb 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqoa10.tlb 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqoa20.tlb 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqperf.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqperf.ini 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqprfsym.h 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mqqm.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqrt.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqrtdep.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqsec.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqsnap.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqsvc.exe 6/22/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqtgsvc.exe 6/22/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqtrig.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqupgrd.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mqutil.dll 6/25/2009 2:5.1 Signed KB971032.cat Microsoft Windows Component Publisher mrinfo.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mrt.exe 7/7/2009 None Signed N/A Microsoft Corporation msaatext.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msacm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msacm32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msacm32.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msadds32.ax 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msadp32.acm 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msafd.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msapsspc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msasn1(3).dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msasn1.dll 9/4/2009 2:5.1 Signed KB974571.cat Microsoft Windows Component Publisher msaud32.acm 9/1/2009 8.0.0.4502 Not Signed N/A msaudite.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mscat32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mscdexnt.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mscms.dll 6/24/2008 2:5.1 Signed KB952954.cat Microsoft Windows Component Publisher mscomctl.ocx 12/20/2002 None Signed N/A Microsoft Corporation msconf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mscoree.dll 12/22/2006 2.0.50727.253 Not Signed N/A mscorier.dll 9/23/2005 2.0.50727.42 Not Signed N/A mscories.dll 9/23/2005 2.0.50727.42 Not Signed N/A mscpx32r.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mscpxl32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msctf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msctfime.ime 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msctfp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msdadiag.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msdart.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msdatsrc.tlb 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msdmo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msdtc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msdtclog.dll 6/12/2008 2:5.1 Signed KB952004.cat Microsoft Windows Component Publisher msdtcprf.h 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msdtcprf.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msdtcprx.dll 6/12/2008 2:5.1 Signed KB952004.cat Microsoft Windows Component Publisher msdtctm.dll 6/12/2008 2:5.1 Signed KB952004.cat Microsoft Windows Component Publisher msdtcuiu.dll 6/12/2008 2:5.1 Signed KB952004.cat Microsoft Windows Component Publisher msdxm.ocx 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher msdxmlc.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher msencode.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msexch40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msexcl40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msftedit.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msg.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msg711.acm 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msg723.acm 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msgina.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msgsm32.acm 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msgsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msh261.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msh263.drv 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mshearts.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mshta.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mshtml.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher mshtml.tlb 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mshtmled.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher mshtmler.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msi.dll 5/4/2005 2:5.1 Signed KB893803v2_wxp.cat Microsoft Windows Component Publisher msident.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msidle.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msidntld.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msieftp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msiexec.exe 5/4/2005 2:5.1 Signed KB893803v2_wxp.cat Microsoft Windows Component Publisher msihnd.dll 5/4/2005 2:5.1 Signed KB893803v2_wxp.cat Microsoft Windows Component Publisher msimg32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msimsg.dll 5/4/2005 2:5.1 Signed KB893803v2_wxp.cat Microsoft Windows Component Publisher msimtf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msisip.dll 5/4/2005 2:5.1 Signed KB893803v2_wxp.cat Microsoft Windows Component Publisher msjet40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msjetoledb40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msjint40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msjter40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msjtes40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mslbui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msls31.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msltus40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msnetobj.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher msnsspc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msobjs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msoeacct.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msoert2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msonpmon.dll 10/26/2006 None Signed N/A Microsoft Corporation msorc32r.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msorcl32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mspaint.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mspatcha.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mspbde40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mspmsnsv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mspmsp.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher msports.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msprivs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msr2c.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msr2cenu.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msratelc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msrating.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher msrclr40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msrd2x40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msrd3x40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msrecr40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msrepl40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msrle32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mssap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msscds32.ax 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher msscp.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher msscript.ocx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mssign32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mssip32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msstdfmt.dll 7/24/2006 None Signed N/A Microsoft Corporation

#15 andrew2009

andrew2009

    Authentic Member

  • Authentic Member
  • PipPip
  • 42 posts

Posted 23 November 2009 - 09:13 PM

msswch.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msswchx.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mstask.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mstext40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mstime.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher mstinit.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mstlsapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mstsc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mstscax.dll 6/5/2009 2:5.1 Signed KB958470.cat Microsoft Windows Component Publisher msutb.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msv1_0.dll 9/11/2009 2:5.1 Signed KB975467.cat Microsoft Windows Component Publisher msvbvm50.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvbvm60.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvcirt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvcp50.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvcp60.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvcp71.dll 3/18/2003 7.10.3077.0 Not Signed N/A msvcr71.dll 2/20/2003 7.10.3052.4 Not Signed N/A msvcrt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvcrt20.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvcrt40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvfw32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvidc32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvidctl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msvideo.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msw3prt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mswdat10.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mswebdvd.dll 8/5/2009 2:5.1 Signed KB973815.cat Microsoft Windows Component Publisher mswmdm.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher mswsock.dll 6/20/2008 2:5.1 Signed KB951748.cat Microsoft Windows Component Publisher mswstr10.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msxbde40.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msxml.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msxml2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msxml2r.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msxml3.dll 9/4/2008 2:5.1 Signed KB955069.cat Microsoft Windows Component Publisher msxml3r.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msxml4.dll 9/30/2008 None Signed N/A Microsoft Corporation msxml4r.dll 4/18/2003 4.10.9404.0 Not Signed N/A msxml6.dll 8/29/2008 None Signed N/A Microsoft Corporation msxml6r.dll 7/19/2006 None Signed N/A Microsoft Corporation msxmlr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher msyuv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mtxclu.dll 6/12/2008 2:5.1 Signed KB952004.cat Microsoft Windows Component Publisher mtxdm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mtxex.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mtxlegih.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mtxoci.dll 6/12/2008 2:5.1 Signed KB952004.cat Microsoft Windows Component Publisher mucltui.dll 8/6/2009 2:5.0,2:5.1,2:5.2 Signed oem16.CAT Microsoft Windows Component Publisher mucltui.dll.mui 8/6/2009 2:5.0,2:5.1,2:5.2 Signed oem16.CAT Microsoft Windows Component Publisher muweb.dll 8/6/2009 2:5.0,2:5.1,2:5.2 Signed oem16.CAT Microsoft Windows Component Publisher mycomput.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher mydocs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher narrator.exe 10/4/2006 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher narrhook.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nbtstat.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ncobjapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ncpa.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ncpa.cpl.manifest 4/25/2006 None Not Signed N/A ncs2dmix.dll 6/9/2008 None Signed N/A Intel Corporation ncs2instutility.dll 6/9/2008 None Signed N/A Intel Corporation ncs2setp.dll 6/16/2008 13.1.13.0 Not Signed N/A ncscolib.dll 6/13/2008 None Signed N/A Intel Corporation ncscrt8.dll 4/7/2006 8.0.0.0 Not Signed N/A ncscrt8_p.dll 4/7/2006 8.0.0.0 Not Signed N/A ncxpnt.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nddeapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nddeapir.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nddenb32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ndptsp.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher net.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher net.hlp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher net1.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netapi32.dll 10/15/2008 2:5.1 Signed KB958644.cat Microsoft Windows Component Publisher netcfgx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netdde.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netevent.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netfxperf.dll 2/20/2003 1.1.4322.573 Not Signed N/A neth.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netid.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netlogon(3).dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netlogon.dll 2/6/2009 2:5.1 Signed KB968389.cat Microsoft Windows Component Publisher netman.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netmsg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netplwiz.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netrap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netsetup.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netsetup.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher netsh.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netshell.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netstat.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netui0.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netui1.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netui2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher netware.drv 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher newdev.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nicco2.dll 8/6/2007 2:5.00,2:5.1 Signed oem0.CAT Microsoft Windows Hardware Compatibility Publisher nicinstq.dll 6/4/2008 2:5.00,2:5.1 Signed oem0.CAT Microsoft Windows Hardware Compatibility Publisher nlhtml.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nlsfunc.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nmevtmsg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nmmkcert.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nncomm.dll 9/24/2002 5.0.2.4 Not Signed N/A noise.chs 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.cht 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.dat 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.deu 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.eng 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.enu 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.esn 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.fra 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.ita 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.nld 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.sve 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher noise.tha 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher notepad.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher npptools.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nscompat.tlb 4/25/2006 None Not Signed N/A nslookup.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntbackup.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher ntdll.dll 2/9/2009 2:5.1 Signed KB956572.cat Microsoft Windows Component Publisher ntdos.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntdos404.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntdos411.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntdos412.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntdos804.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntdsapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntdsbcli.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher ntimage.gif 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntio.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntio404.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntio411.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntio412.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntio804.sys 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntkrnlpa.exe 8/4/2009 2:5.1 Signed KB971486.cat Microsoft Windows Component Publisher ntlanman.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntlanui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntlanui2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntlsapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntmarta.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntmsapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntmsdba.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntmsevt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntmsmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntmsmgr.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntmsoprq.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntmssvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntoskrnl.exe 8/4/2009 2:5.1 Signed KB971486.cat Microsoft Windows Component Publisher ntprint.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntsd.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntsdexts.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntshrui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntvdm.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ntvdmd.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nusrmgr.cpl 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nw16.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nwapi16.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nwapi32.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nwc.cpl 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nwc.cpl.manifest 4/25/2006 None Not Signed N/A nwcfg.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nwevent.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nwprovau.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher nwscript.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher nwwks.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher oakley.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher objsel.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher occache.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ocmanage.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbc16gt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbc32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbc32gt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcad32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcbcp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcconf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcconf.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcconf.rsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbccp32.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbccp32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbccr32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbccu32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcint.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcji32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcjt32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbcp32r.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odbctrac.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher oddbse32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odexl32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odfox32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odpdx32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher odtext32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher oembios.bin 5/28/2002 2:5.1 Signed OEMBIOS.CAT Microsoft Windows Hardware Compatibility Publisher oembios.dat 5/28/2002 2:5.1 Signed OEMBIOS.CAT Microsoft Windows Hardware Compatibility Publisher oembios.sig 5/28/2002 2:5.1 Signed OEMBIOS.CAT Microsoft Windows Hardware Compatibility Publisher oeminfo.ini 6/1/2009 None Not Signed N/A oemlogo.bmp 1/14/2003 None Not Signed N/A offfilt.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher oggsplitter.ax 11/25/2005 1.0.0.0 Not Signed N/A ogm.dll 1/10/2009 None Not Signed N/A old18.tmp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher old1c.tmp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher old20.tmp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ole2.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ole2disp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ole2nls.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ole32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher oleacc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher oleaccrc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher oleaut32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher olecli.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher olecli32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher olecnv32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher oledlg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher oleprn.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher olepro32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher olesvr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher olesvr32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher olethk32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher openfiles.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher opengl32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher optimfrog.dll 4/20/2004 1.1.0.0 Not Signed N/A osk.exe 10/4/2006 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher osuninst.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher osuninst.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher p2p.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher p2pgasvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher p2pgraph.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher p2pnetsh.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher p2psvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher packager.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pagefileconfig.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher panmap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher paqsp.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher pathping.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pautoenr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pcl.sep 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pdfc_port.dll 4/7/2008 None Signed N/A PDF Complete pdh.dll 3/6/2009 2:5.1 Signed KB956572.cat Microsoft Windows Component Publisher pentnt.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfc009.dat 11/20/2009 None Not Signed N/A perfci.h 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfci.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfctrs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfd009.dat 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfdisk.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perffilt.h 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perffilt.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfh009.dat 11/20/2009 None Not Signed N/A perfi009.dat 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfmon.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfmon.msc 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfnet.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfnw.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher perfos.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfproc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfstringbackup.ini 11/20/2009 None Not Signed N/A perfts.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfwci.h 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher perfwci.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher photometadatahandler 10/24/2006 2:5.1,2:5.2 Signed WIC.cat Microsoft Windows photowiz.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pid.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pidgen.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher pifmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ping.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher ping6.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pjlmon.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher plustab.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pmspl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pncrt.dll 3/8/1998 4.20.0.0 Not Signed N/A pngfilt.dll 9/25/2009 2:5.1 Signed KB974455.cat Microsoft Windows Component Publisher pnrpnsp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher polstore.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher powercfg.cpl 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher powercfg.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher powrprof.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher presentationcffraste 10/20/2006 None Signed N/A Microsoft Corporation presentationhost.exe 10/20/2006 None Signed N/A Microsoft Corporation presentationhostprox 10/20/2006 None Signed N/A Microsoft Corporation presentationnative_v 10/20/2006 None Signed N/A Microsoft Corporation prflbmsg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher print.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher printui.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher prncnfg.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher prndrvr.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher prnjobs.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher prnmngr.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher prnport.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher prnqctl.vbs 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher prntvpt.dll 10/14/2006 6.0.5824.16384 Not Signed N/A proctexe.ocx 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher prodspec.ini 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher profmap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher progman.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher prontobj.dll 11/28/2007 None Signed N/A Intel Corporation proquota.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher prounstl.exe 6/3/2008 None Signed N/A Intel Corporation proxycfg.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher psapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher psbase.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pschdcnt.h 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pschdprf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pschdprf.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pscript.sep 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher psnppagn.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pstorec.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pstorsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher pubprn.vbs 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qappsrv.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qasf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qcap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qdv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qdvd.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qedit.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qedwipes.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qmgr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qmgrprxy.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qosname.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qprocess.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher qt-dx331.dll 11/6/2008 3.3.1.1 Not Signed N/A quartz.dll 6/3/2009 2:5.1 Signed KB971633.cat Microsoft Windows Component Publisher query.dll 7/17/2009 2:5.1 Signed KB969059.cat Microsoft Windows Component Publisher qwinsta.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher racpldlg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasadhlp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasapi32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasauto.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasautou.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher raschap.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasctrnm.h 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasctrs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasctrs.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasdial.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasdlg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasman.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasmans.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasmontr.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasmxs.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasphone.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasppp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasrad.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rassapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rasser.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rastapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rastls.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rcbdyctl.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rcimlby.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rcp.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rdchost.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rdpcfgex.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rdpclip.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rdpdd.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rdpsnd.dll 10/6/2004 2:5.1 Signed sp3_uber.cat Microsoft Windows Component Publisher rdpwsx.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rdsaddin.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rdshost.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher realmediasplitter.ax 9/18/2007 1.0.1.2 Not Signed N/A recover.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher redir.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher reg.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher regapi.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher regedt32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher regini.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher registration.ini 10/13/2007 None Not Signed N/A regsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher regsvr32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher regwiz.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher regwizc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher relog.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher remotepg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher remotesp.tsp 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rend.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher replace.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher reset.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher resutils.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rexec.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rgb9rast_2.dll 8/24/2006 None Signed N/A Microsoft Corporation riched20.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher riched32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rlofrdec.ax 4/27/2004 1.0.0.1 Not Signed N/A rnr20.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher route.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher routemon.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher routetab.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rpcns4.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rpcrt4.dll 4/15/2009 2:5.1 Signed KB970238.cat Microsoft Windows Component Publisher rpcss.dll 2/9/2009 2:5.1 Signed KB956572.cat Microsoft Windows Component Publisher rsaci.rat 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsaenh.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsfsaps.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher rsh.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rshx32.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsm.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsmps.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsmsink.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsmui.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsnotify.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher rsop.msc 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher rsopprov.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher rsvp.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsvp.ini 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsvpcnts.h 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsvpmsg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsvpperf.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rsvpsp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rtcshare.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher rtipxmib.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rtm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rtutils.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher runas.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rundll32.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher runonce.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher rwinsta.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher safrcdlg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher safrdm.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher safrslv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher samlib.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher samsrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher sapi.cpl.manifest 4/25/2006 None Not Signed N/A savedump.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher sbe.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher sbeio.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher sc.exe 2/6/2009 2:5.1 Signed KB956572.cat Microsoft Windows Component Publisher scarddlg.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scardssp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scardsvr.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher sccbase.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher sccsccp.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scecli.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scesrv.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher schannel.dll 6/25/2009 2:5.1 Signed KB968389.cat Microsoft Windows Component Publisher schedsvc.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher schtasks.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher sclgntfy.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scp32.dll 7/24/2006 None Signed N/A Microsoft Corporation scrcap.dll 12/27/2006 3.0.0.0 Not Signed N/A scredir.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scriptpw.dll 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publisher scrnsave.scr 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scrobj.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scrrun.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher scrvid.dll 9/27/2006 2.0.0.0 Not Signed N/A sdbinst.exe 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher sdhcinst.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher sdpblb.dll 2/27/2006 2:5.1 Signed NT5.CAT Microsoft Windows Publisher secedit.exe 2/27/2006 2:5.1 Signed NT5INF.CAT Microsoft Windows Component Publ

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users