Phéripherique audio ne marche pas
Utilisateur anonyme
-
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Bonjour,
SUR MON ORDI J'AI INSTALE UNE CARTE SON IL Y EN AVAIT UNE AUTRE SUR MON ORDI INTEGRE A LA CARTE MERE.
ET DONC UN JOUR J'AI INSTALER AVAST! INTERNET SECURITY.
AU REDEMARAGE JE DEMARE AUDACITY POUR ECOUTER UNE MUSIQUE MAIS IL ME DIT QU'IL N'Y PAS DE PHERIPHIQUE AUDIO.
ALORS J'AI FAIT :
-OUVERT LE GESTIONNAIRE DE S PHERIPHERIQUE ET ME DIT QUE TOUT VA BIEN
-OUVERT LES PARAMETRES SONT ET PHERIPHERIQUE AUDIO ET ME DIT QU'IL N'Y APAS DE PHERIPHERIQUE AUDIO
-JE DESSINSTAL ET REENSTALLE TOUT LES DRIVERS DES PERIPHERIQUES AUDIO
-JE VAIS SUR LINUX (UBUNTU, QUI EST INSTALLER SUR UN NOTRE DISK DUR) PAREIL
-JE REMETS LES PARAMETRE DU BIOS PAR DEFAUT
-JE DEMARE PLUSIEURE OUTILS DE SECURITE DONT UN QUI S'APELLE GMER QUI MA TROUVER SA :
GMER 1.0.15.15641 - http://www.gmer.net
ROOTKIT SCAN 2011-10-08 15:39:17
WINDOWS 5.1.2600 SERVICE PACK 3 HARDDISK1\DR1 -> \DEVICE\IDE\IDEDEVICEP2T0L0-E SAMSUNG_HD082GJ REV.JE100-19
RUNNING: GMER.EXE; DRIVER: C:\DOCUME~1\CLEMEN~1.PA1\LOCALS~1\TEMP\FWTYIKOC.SYS
---- SYSTEM - GMER 1.0.15 ----
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWADDBOOTENTRY [0XAADF99CA]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWALLOCATEVIRTUALMEMORY [0XAAE4EA68]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCLOSE [0XAAE19AF5]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEEVENT [0XAADFBEAC]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEEVENTPAIR [0XAADFBF04]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEIOCOMPLETION [0XAADFC01A]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEKEY [0XAAE194A9]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEMUTANT [0XAADFBE02]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATESECTION [0XAADFBF54]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATESEMAPHORE [0XAADFBE56]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATETIMER [0XAADFBFC8]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWDELETEBOOTENTRY [0XAADF99EE]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWDELETEKEY [0XAAE1A1BB]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWDELETEVALUEKEY [0XAAE1A471]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWDUPLICATEOBJECT [0XAADFC29E]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWFREEVIRTUALMEMORY [0XAAE4EB18]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWLOADDRIVER [0XAADF97B8]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWMODIFYBOOTENTRY [0XAADF9A12]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWNOTIFYCHANGEKEY [0XAADFC412]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWNOTIFYCHANGEMULTIPLEKEYS [0XAADFA4AA]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENEVENT [0XAADFBEDC]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENEVENTPAIR [0XAADFBF2C]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENIOCOMPLETION [0XAADFC044]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENKEY [0XAAE19805]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENMUTANT [0XAADFBE2E]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENPROCESS [0XAADFC0D6]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENSECTION [0XAADFBF94]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENSEMAPHORE [0XAADFBE84]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENTHREAD [0XAADFC1BA]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENTIMER [0XAADFBFF2]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWPROTECTVIRTUALMEMORY [0XAAE4EBB0]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWQUERYKEY [0XAAE19D0C]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWQUERYOBJECT [0XAADFA370]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWQUERYVALUEKEY [0XAAE19B5E]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWRENAMEKEY [0XAAE56E26]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWRESTOREKEY [0XAAE18B1C]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETBOOTENTRYORDER [0XAADF9A36]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETBOOTOPTIONS [0XAADF9A5A]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETSYSTEMINFORMATION [0XAADF9812]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETSYSTEMPOWERSTATE [0XAADF994E]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETVALUEKEY [0XAAE1A2C2]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSHUTDOWNSYSTEM [0XAADF992A]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSYSTEMDEBUGCONTROL [0XAADF9972]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWVDMCONTROL [0XAADF9A7E]
CODE \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWCREATEPROCESSEX [0XAAE638DE]
---- KERNEL CODE SECTIONS - GMER 1.0.15 ----
.TEXT NTKRNLPA.EXE!ZWCALLBACKRETURN + 23C8 80501C00 4 BYTES [68, EA, E4, AA]
PAGE NTKRNLPA.EXE!ZWREPLYWAITRECEIVEPORTEX + 5EC 8059B8EC 4 BYTES CALL AADFAE25 \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE)
PAGE NTKRNLPA.EXE!ZWCREATEPROCESSEX 805C74CC 7 BYTES JMP AAE638E2 \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE)
---- USER CODE SECTIONS - GMER 1.0.15 ----
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] KERNEL32.DLL!SETUNHANDLEDEXCEPTIONFILTER 7C84495D 4 BYTES [C2, 04, 00, 90] {RET 0X4; NOP }
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 003E01D4
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003E00E4
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 003E0120
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 003E015C
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 003E0198
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 003E0030
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 003E006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003E00A8
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003F00E4
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 003F0120
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003F00A8
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 003F0030
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 003F006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 007901D4
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 007900E4
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00790120
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0079015C
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00790198
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CREATESERVICEA 77E07211 3 BYTES JMP 00790030
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CREATESERVICEA + 4 77E07215 1 BYTE [88]
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0079006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 007900A8
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 007A00E4
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 007A0120
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 007A00A8
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 007A0030
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 007A006C
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 3 BYTES JMP 003901D4
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY + 4 77E06D85 1 BYTE [88]
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003900E4
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00390120
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0039015C
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00390198
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00390030
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0039006C
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003900A8
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003A00E4
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 003A0120
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003A00A8
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 003A0030
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 003A006C
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00040030
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0004006C
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002801D4
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002800E4
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00280120
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0028015C
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00280198
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00280030
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0028006C
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002800A8
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002900E4
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00290120
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002900A8
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00290030
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0029006C
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 000A0030
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 000A006C
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002C01D4
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002C015C
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002C0198
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002D00E4
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002D0120
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002D00A8
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002D0030
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002D006C
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 000A0030
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 000A006C
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 003701D4
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003700E4
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00370120
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0037015C
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00370198
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00370030
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0037006C
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003700A8
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003800E4
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00380120
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003800A8
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00380030
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0038006C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003900E4
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00390120
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003900A8
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00390030
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0039006C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 018B01D4
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 018B00E4
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 018B0120
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 018B015C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 018B0198
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 018B0030
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 018B006C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 018B00A8
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 004A01D4
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 004A00E4
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 004A0120
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 004A015C
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 004A0198
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 004A0030
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 004A006C
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 004A00A8
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 004B00E4
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 004B0120
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 004B00A8
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 004B0030
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 004B006C
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00140030
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0014006C
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 003801D4
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003800E4
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00380120
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0038015C
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00380198
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00380030
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0038006C
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003800A8
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003900E4
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00390120
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003900A8
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00390030
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0039006C
.TEXT C:\WINDOWS\EXPLORER.EXE[864] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\EXPLORER.EXE[864] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002C01D4
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002C015C
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002C0198
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002D00E4
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002D0120
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002D00A8
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002D0030
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002D006C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002C01D4
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002C015C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002C0198
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00070030
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0007006C
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00140030
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0014006C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003800E4
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00380120
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003800A8
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00380030
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0038006C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 3 BYTES JMP 003901D4
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY + 4 77E06D85 1 BYTE [88]
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003900E4
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00390120
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0039015C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00390198
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00390030
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0039006C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003900A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] USER32.DLL!SETWINEVENTHOOK
SUR MON ORDI J'AI INSTALE UNE CARTE SON IL Y EN AVAIT UNE AUTRE SUR MON ORDI INTEGRE A LA CARTE MERE.
ET DONC UN JOUR J'AI INSTALER AVAST! INTERNET SECURITY.
AU REDEMARAGE JE DEMARE AUDACITY POUR ECOUTER UNE MUSIQUE MAIS IL ME DIT QU'IL N'Y PAS DE PHERIPHIQUE AUDIO.
ALORS J'AI FAIT :
-OUVERT LE GESTIONNAIRE DE S PHERIPHERIQUE ET ME DIT QUE TOUT VA BIEN
-OUVERT LES PARAMETRES SONT ET PHERIPHERIQUE AUDIO ET ME DIT QU'IL N'Y APAS DE PHERIPHERIQUE AUDIO
-JE DESSINSTAL ET REENSTALLE TOUT LES DRIVERS DES PERIPHERIQUES AUDIO
-JE VAIS SUR LINUX (UBUNTU, QUI EST INSTALLER SUR UN NOTRE DISK DUR) PAREIL
-JE REMETS LES PARAMETRE DU BIOS PAR DEFAUT
-JE DEMARE PLUSIEURE OUTILS DE SECURITE DONT UN QUI S'APELLE GMER QUI MA TROUVER SA :
GMER 1.0.15.15641 - http://www.gmer.net
ROOTKIT SCAN 2011-10-08 15:39:17
WINDOWS 5.1.2600 SERVICE PACK 3 HARDDISK1\DR1 -> \DEVICE\IDE\IDEDEVICEP2T0L0-E SAMSUNG_HD082GJ REV.JE100-19
RUNNING: GMER.EXE; DRIVER: C:\DOCUME~1\CLEMEN~1.PA1\LOCALS~1\TEMP\FWTYIKOC.SYS
---- SYSTEM - GMER 1.0.15 ----
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWADDBOOTENTRY [0XAADF99CA]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWALLOCATEVIRTUALMEMORY [0XAAE4EA68]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCLOSE [0XAAE19AF5]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEEVENT [0XAADFBEAC]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEEVENTPAIR [0XAADFBF04]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEIOCOMPLETION [0XAADFC01A]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEKEY [0XAAE194A9]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATEMUTANT [0XAADFBE02]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATESECTION [0XAADFBF54]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATESEMAPHORE [0XAADFBE56]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWCREATETIMER [0XAADFBFC8]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWDELETEBOOTENTRY [0XAADF99EE]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWDELETEKEY [0XAAE1A1BB]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWDELETEVALUEKEY [0XAAE1A471]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWDUPLICATEOBJECT [0XAADFC29E]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWFREEVIRTUALMEMORY [0XAAE4EB18]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWLOADDRIVER [0XAADF97B8]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWMODIFYBOOTENTRY [0XAADF9A12]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWNOTIFYCHANGEKEY [0XAADFC412]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWNOTIFYCHANGEMULTIPLEKEYS [0XAADFA4AA]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENEVENT [0XAADFBEDC]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENEVENTPAIR [0XAADFBF2C]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENIOCOMPLETION [0XAADFC044]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENKEY [0XAAE19805]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENMUTANT [0XAADFBE2E]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENPROCESS [0XAADFC0D6]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENSECTION [0XAADFBF94]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENSEMAPHORE [0XAADFBE84]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENTHREAD [0XAADFC1BA]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWOPENTIMER [0XAADFBFF2]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWPROTECTVIRTUALMEMORY [0XAAE4EBB0]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWQUERYKEY [0XAAE19D0C]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWQUERYOBJECT [0XAADFA370]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWQUERYVALUEKEY [0XAAE19B5E]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWRENAMEKEY [0XAAE56E26]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWRESTOREKEY [0XAAE18B1C]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETBOOTENTRYORDER [0XAADF9A36]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETBOOTOPTIONS [0XAADF9A5A]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETSYSTEMINFORMATION [0XAADF9812]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETSYSTEMPOWERSTATE [0XAADF994E]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSETVALUEKEY [0XAAE1A2C2]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSHUTDOWNSYSTEM [0XAADF992A]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWSYSTEMDEBUGCONTROL [0XAADF9972]
SSDT \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE) ZWVDMCONTROL [0XAADF9A7E]
CODE \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE) ZWCREATEPROCESSEX [0XAAE638DE]
---- KERNEL CODE SECTIONS - GMER 1.0.15 ----
.TEXT NTKRNLPA.EXE!ZWCALLBACKRETURN + 23C8 80501C00 4 BYTES [68, EA, E4, AA]
PAGE NTKRNLPA.EXE!ZWREPLYWAITRECEIVEPORTEX + 5EC 8059B8EC 4 BYTES CALL AADFAE25 \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSNX.SYS (AVAST! VIRTUALIZATION DRIVER/AVAST SOFTWARE)
PAGE NTKRNLPA.EXE!ZWCREATEPROCESSEX 805C74CC 7 BYTES JMP AAE638E2 \SYSTEMROOT\SYSTEM32\DRIVERS\ASWSP.SYS (AVAST! SELF PROTECTION MODULE/AVAST SOFTWARE)
---- USER CODE SECTIONS - GMER 1.0.15 ----
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[120] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[272] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] KERNEL32.DLL!SETUNHANDLEDEXCEPTIONFILTER 7C84495D 4 BYTES [C2, 04, 00, 90] {RET 0X4; NOP }
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 003E01D4
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003E00E4
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 003E0120
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 003E015C
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 003E0198
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 003E0030
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 003E006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003E00A8
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003F00E4
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 003F0120
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003F00A8
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 003F0030
.TEXT I:\PROGRAME FILE\AVAST\AVASTSVC.EXE[360] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 003F006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 007901D4
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 007900E4
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00790120
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0079015C
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00790198
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CREATESERVICEA 77E07211 3 BYTES JMP 00790030
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CREATESERVICEA + 4 77E07215 1 BYTE [88]
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0079006C
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 007900A8
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 007A00E4
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 007A0120
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 007A00A8
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 007A0030
.TEXT I:\PROGRAME FILE\AVAST\AVASTUI.EXE[404] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 007A006C
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 3 BYTES JMP 003901D4
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY + 4 77E06D85 1 BYTE [88]
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003900E4
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00390120
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0039015C
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00390198
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00390030
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0039006C
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003900A8
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003A00E4
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 003A0120
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003A00A8
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 003A0030
.TEXT C:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE[444] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 003A006C
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00040030
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0004006C
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002801D4
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002800E4
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00280120
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0028015C
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00280198
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00280030
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0028006C
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002800A8
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002900E4
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00290120
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002900A8
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00290030
.TEXT C:\PROGRAM FILES\PCI AUDIO APPLICATIONS\MIXER.EXE[476] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0029006C
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 000A0030
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 000A006C
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002C01D4
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002C015C
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002C0198
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002D00E4
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002D0120
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002D00A8
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002D0030
.TEXT C:\WINDOWS\SYSTEM32\CTFMON.EXE[484] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002D006C
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 000A0030
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 000A006C
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 003701D4
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003700E4
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00370120
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0037015C
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00370198
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00370030
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0037006C
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003700A8
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003800E4
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00380120
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003800A8
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00380030
.TEXT C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE[500] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0038006C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003900E4
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00390120
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003900A8
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00390030
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0039006C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 018B01D4
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 018B00E4
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 018B0120
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 018B015C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 018B0198
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 018B0030
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 018B006C
.TEXT C:\PROGRAM FILES\DAP\DAP.EXE[536] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 018B00A8
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00150030
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0015006C
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 004A01D4
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 004A00E4
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 004A0120
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 004A015C
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 004A0198
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 004A0030
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 004A006C
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 004A00A8
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 004B00E4
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 004B0120
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 004B00A8
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 004B0030
.TEXT I:\PROGRAME FILE\AVAST\AFWSERV.EXE[620] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 004B006C
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00140030
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0014006C
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 003801D4
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003800E4
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00380120
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0038015C
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00380198
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00380030
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0038006C
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003800A8
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003900E4
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00390120
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003900A8
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00390030
.TEXT C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\VS7DEBUG\MDM.EXE[756] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0039006C
.TEXT C:\WINDOWS\EXPLORER.EXE[864] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\EXPLORER.EXE[864] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002C01D4
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002C015C
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002C0198
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\EXPLORER.EXE[864] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002D00E4
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002D0120
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002D00A8
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002D0030
.TEXT C:\WINDOWS\EXPLORER.EXE[864] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002D006C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002C01D4
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002C015C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002C0198
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\ALG.EXE[1068] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00070030
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0007006C
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\WINLOGON.EXE[1164] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\SERVICES.EXE[1228] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 002C0030
.TEXT C:\WINDOWS\SYSTEM32\LSASS.EXE[1240] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 002C006C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00140030
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0014006C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 003800E4
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 00380120
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 003800A8
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!SETWINEVENTHOOK 7E3B17F7 5 BYTES JMP 00380030
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] USER32.DLL!UNHOOKWINEVENT 7E3B18AC 5 BYTES JMP 0038006C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 3 BYTES JMP 003901D4
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY + 4 77E06D85 1 BYTE [88]
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 003900E4
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 00390120
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 0039015C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 00390198
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 00390030
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 0039006C
.TEXT C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE[1400] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 003900A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] NTDLL.DLL!LDRLOADDLL 7C92632D 5 BYTES JMP 00090030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] NTDLL.DLL!LDRUNLOADDLL 7C9271CD 5 BYTES JMP 0009006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!SETSERVICEOBJECTSECURITY 77E06D81 5 BYTES JMP 002B01D4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CHANGESERVICECONFIGA 77E06E69 5 BYTES JMP 002B00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CHANGESERVICECONFIGW 77E07001 5 BYTES JMP 002B0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CHANGESERVICECONFIG2A 77E07101 5 BYTES JMP 002B015C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CHANGESERVICECONFIG2W 77E07189 5 BYTES JMP 002B0198
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CREATESERVICEA 77E07211 5 BYTES JMP 002B0030
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!CREATESERVICEW 77E073A9 5 BYTES JMP 002B006C
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] ADVAPI32.DLL!DELETESERVICE 77E074B1 5 BYTES JMP 002B00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] USER32.DLL!SETWINDOWSHOOKEXW 7E3A820F 5 BYTES JMP 002C00E4
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] USER32.DLL!UNHOOKWINDOWSHOOKEX 7E3AD5F3 5 BYTES JMP 002C0120
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] USER32.DLL!SETWINDOWSHOOKEXA 7E3B1211 5 BYTES JMP 002C00A8
.TEXT C:\WINDOWS\SYSTEM32\SVCHOST.EXE[1420] USER32.DLL!SETWINEVENTHOOK
A voir également:
- Phéripherique audio ne marche pas
- Musique audio - Télécharger - Lecture & Playlists
- Realtek audio driver - Télécharger - Pilotes & Matériel
- Transcription audio en texte word gratuit - Guide
- Extraire audio mp4 - Guide
- Freemake audio converter - Télécharger - Conversion & Extraction
2 réponses
Salut,
En tout cas, les majuscules du clavier, elles, fonctionnent.
C'est déjà ça !
SHUT THE F*C*K UP, WE HAVE OTHER SONGS TOO !!
En tout cas, les majuscules du clavier, elles, fonctionnent.
C'est déjà ça !
SHUT THE F*C*K UP, WE HAVE OTHER SONGS TOO !!