Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
spyware installed in my laptop please help!
Message
<blockquote data-quote="godlovesus" data-source="post: 383159" data-attributes="member: 36321"><p>Need help bad, spyware on my computer, found name but forgot to keep the log as it said it was deleted but, computer still acting up! </p><p>This is log just from 1 time of rogue killer, have run a number of spyware, antivirus programs, including rkill but, dont know what to look for in rkill. im very basic computer person so, please if you can help me, you will probably need to speak to me like a serious novice... thank you in advance!</p><p></p><p>RogueKiller V10.6.2.0 [May 4 2015] by Adlice Software</p><p>mail : <a href="http://www.adlice.com/contact/" target="_blank">http://www.adlice.com/contact/</a></p><p>Feedback : <a href="http://forum.adlice.com" target="_blank">http://forum.adlice.com</a></p><p>Website : <a href="http://www.adlice.com/softwares/roguekiller/" target="_blank">http://www.adlice.com/softwares/roguekiller/</a></p><p>Blog : <a href="http://www.adlice.com" target="_blank">http://www.adlice.com</a></p><p></p><p>Operating System : Windows 8.1 (6.3.9200 ) 64 bits version</p><p>Started in : Normal mode</p><p>User : god bless [Administrator]</p><p>Started from : C:\Users\god bless\Downloads\RogueKiller (1).exe</p><p>Mode : Scan Aborted -- Date : 05/10/2015 14:57:30</p><p></p><p>¤¤¤ Processes : 0 ¤¤¤</p><p></p><p>¤¤¤ Registry : 0 ¤¤¤</p><p></p><p>¤¤¤ Tasks : 0 ¤¤¤</p><p></p><p>¤¤¤ Files : 0 ¤¤¤</p><p></p><p>¤¤¤ Hosts File : 0 ¤¤¤</p><p></p><p>¤¤¤ Antirootkit : 181 (Driver: Not loaded [0xc000036b]) ¤¤¤</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x72e91631 (jmp 0xfdefc051|jmp 0xffffee6a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe)</p><p>[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe)</p><p></p><p>¤¤¤ Web browsers : 0 ¤¤¤</p><p></p><p>¤¤¤ MBR Check : ¤¤¤</p><p>+++++ PhysicalDrive0: ST320LT012-1DG14C +++++</p><p>--- User ---</p><p>[MBR] 8496190459c47fc001017111c71d5304</p><p>[BSP] b3339daaeb775360acb6817f22cb289c : Empty|VT.Unknown MBR Code</p><p>Partition table:</p><p>0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 500 MB</p><p>1 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1026048 | Size: 40 MB</p><p>2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1107968 | Size: 128 MB</p><p>3 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1370112 | Size: 490 MB</p><p>4 - Basic data partition | Offset (sectors): 2373632 | Size: 296693 MB</p><p>5 - [SYSTEM][MAN-MOUNT] Microsoft recovery partition | Offset (sectors): 610000896 | Size: 7392 MB</p><p>User = LL1 ... OK</p><p>User = LL2 ... OK</p><p></p><p></p><p>============================================</p><p>RKreport_SCN_04292015_060510.log - RKreport_DEL_04292015_060536.log - RKreport_DEL_04292015_060543.log - RKreport_DEL_04292015_060555.log</p><p>RKreport_DEL_04292015_060619.log - RKreport_DEL_04292015_060659.log - RKreport_SCN_04292015_061900.log - RKreport_DEL_04292015_061932.log</p><p>RKreport_DEL_04292015_062000.log - RKreport_SCN_04292015_070531.log - RKreport_SCN_04292015_090706.log - RKreport_SCN_04302015_053621.log</p><p>RKreport_DEL_04302015_053759.log - RKreport_SCN_05092015_105811.log - RKreport_DEL_05092015_105855.log - RKreport_DEL_05092015_105913.log</p><p>RKreport_DEL_05092015_105918.log - RKreport_DEL_05092015_105922.log - RKreport_DEL_05092015_105928.log - RKreport_DEL_05092015_105944.log</p><p>RKreport_SCN_05092015_110403.log - RKreport_DEL_05092015_110530.log - RKreport_SCN_05092015_111334.log - RKreport_DEL_05092015_111342.log</p><p>RKreport_SCN_05092015_111829.log - RKreport_DEL_05092015_111928.log - RKreport_DEL_05092015_111945.log - RKreport_DEL_05092015_111954.log</p><p>RKreport_SCN_05092015_141448.log - RKreport_SCN_05092015_143958.log - RKreport_SCN_05092015_193325.log</p></blockquote><p></p>
[QUOTE="godlovesus, post: 383159, member: 36321"] Need help bad, spyware on my computer, found name but forgot to keep the log as it said it was deleted but, computer still acting up! This is log just from 1 time of rogue killer, have run a number of spyware, antivirus programs, including rkill but, dont know what to look for in rkill. im very basic computer person so, please if you can help me, you will probably need to speak to me like a serious novice... thank you in advance! RogueKiller V10.6.2.0 [May 4 2015] by Adlice Software mail : [URL]http://www.adlice.com/contact/[/URL] Feedback : [URL]http://forum.adlice.com[/URL] Website : [URL]http://www.adlice.com/softwares/roguekiller/[/URL] Blog : [URL]http://www.adlice.com[/URL] Operating System : Windows 8.1 (6.3.9200 ) 64 bits version Started in : Normal mode User : god bless [Administrator] Started from : C:\Users\god bless\Downloads\RogueKiller (1).exe Mode : Scan Aborted -- Date : 05/10/2015 14:57:30 ¤¤¤ Processes : 0 ¤¤¤ ¤¤¤ Registry : 0 ¤¤¤ ¤¤¤ Tasks : 0 ¤¤¤ ¤¤¤ Files : 0 ¤¤¤ ¤¤¤ Hosts File : 0 ¤¤¤ ¤¤¤ Antirootkit : 181 (Driver: Not loaded [0xc000036b]) ¤¤¤ [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x72e91631 (jmp 0xfdefc051|jmp 0xffffee6a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x72e91501 (jmp 0xfb714e11|jmp 0xffffef9a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x72e91599 (jmp 0xfb714e89|jmp 0xffffef02|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x72e91f19 (jmp 0xfb714119|jmp 0xffffe582|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x72e91b89 (jmp 0xfb714089|jmp 0xffffe912|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x72e936d9 (jmp 0xfb716d69|jmp 0xffffcdc2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x72e93e91 (jmp 0xfb717581|jmp 0xffffc60a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x72e929c9 (jmp 0xfb716399|jmp 0xffffdad2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x72e92af9 (jmp 0xfb714e19|jmp 0xffffd9a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x72e93fc1 (jmp 0xfb717551|jmp 0xffffc4da|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x72e93809 (jmp 0xfb716e49|jmp 0xffffcc92|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x72e92931 (jmp 0xfb716201|jmp 0xffffdb6a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNELBASE.dll - CreateProcessInternalW : Unknown @ 0x72e91a59 (jmp 0xfd7a1b99|jmp 0xffffea42|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x72e91d51 (jmp 0xfb715521|jmp 0xffffe74a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x72e91af1 (jmp 0xfb7152e1|jmp 0xffffe9aa|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x72e93d61 (jmp 0xfb716e91|jmp 0xffffc73a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x72e91c21 (jmp 0xfb715551|jmp 0xffffe87a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x72e93df9 (jmp 0xfb717619|jmp 0xffffc6a2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x72e92769 (jmp 0xfb74cc59|jmp 0xffffdd32|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x72e917f9 (jmp 0xfb714879|jmp 0xffffeca2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x72e91cb9 (jmp 0xfb7153f9|jmp 0xffffe7e2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) KERNEL32.DLL - CreateToolhelp32Snapshot : Unknown @ 0x72e91e81 (jmp 0xfd438611|jmp 0xffffe61a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x72e93349 (jmp 0xfdf28699|jmp 0xffffd152|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x72e93181 (jmp 0xfdefd3e1|jmp 0xffffd31a|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x72e932b1 (jmp 0xfdf22fe1|jmp 0xffffd1ea|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x72e930e9 (jmp 0xfb7151c9|jmp 0xffffd3b2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x72e93219 (jmp 0xfdf28df9|jmp 0xffffd282|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x72e92049 (jmp 0xfdf1ee29|jmp 0xffffe452|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x72e916c9 (jmp 0xfdf1b729|jmp 0xffffedd2|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x72e93479 (jmp 0xfdba2549|jmp 0xffffd022|call 0x1fe) [IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x72e92a61 (jmp 0xfb7156d1|jmp 0xffffda3a|call 0x1fe) ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ MBR Check : ¤¤¤ +++++ PhysicalDrive0: ST320LT012-1DG14C +++++ --- User --- [MBR] 8496190459c47fc001017111c71d5304 [BSP] b3339daaeb775360acb6817f22cb289c : Empty|VT.Unknown MBR Code Partition table: 0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 500 MB 1 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1026048 | Size: 40 MB 2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 1107968 | Size: 128 MB 3 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1370112 | Size: 490 MB 4 - Basic data partition | Offset (sectors): 2373632 | Size: 296693 MB 5 - [SYSTEM][MAN-MOUNT] Microsoft recovery partition | Offset (sectors): 610000896 | Size: 7392 MB User = LL1 ... OK User = LL2 ... OK ============================================ RKreport_SCN_04292015_060510.log - RKreport_DEL_04292015_060536.log - RKreport_DEL_04292015_060543.log - RKreport_DEL_04292015_060555.log RKreport_DEL_04292015_060619.log - RKreport_DEL_04292015_060659.log - RKreport_SCN_04292015_061900.log - RKreport_DEL_04292015_061932.log RKreport_DEL_04292015_062000.log - RKreport_SCN_04292015_070531.log - RKreport_SCN_04292015_090706.log - RKreport_SCN_04302015_053621.log RKreport_DEL_04302015_053759.log - RKreport_SCN_05092015_105811.log - RKreport_DEL_05092015_105855.log - RKreport_DEL_05092015_105913.log RKreport_DEL_05092015_105918.log - RKreport_DEL_05092015_105922.log - RKreport_DEL_05092015_105928.log - RKreport_DEL_05092015_105944.log RKreport_SCN_05092015_110403.log - RKreport_DEL_05092015_110530.log - RKreport_SCN_05092015_111334.log - RKreport_DEL_05092015_111342.log RKreport_SCN_05092015_111829.log - RKreport_DEL_05092015_111928.log - RKreport_DEL_05092015_111945.log - RKreport_DEL_05092015_111954.log RKreport_SCN_05092015_141448.log - RKreport_SCN_05092015_143958.log - RKreport_SCN_05092015_193325.log [/QUOTE]
Insert quotes…
Verification
Post reply
Top