RKreport-DEL-03122016-141106-3.log

Document joint : FCmsLnJjHwG_RKreport-DEL-03122016-141106-3.log

Cliquez pour partager vos propres fichiers

Format du document : application/octet-stream

Prévisualisation

ÿþRogueKiller V12.0.1.0 (x64) [Mar 7 2016] (Premium) par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 8 (6.2.9200) 64 bits version
Démarré en : Mode sans échec prise en charge réseau
Utilisateur : Jean-Marie [Administrateur]
Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Suppression -- Date : 03/12/2016 14:11:06

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 7 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\ByteFence -> Supprimé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\ByteFence -> Supprimé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} (C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll) -> Supprimé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} (C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll) -> Supprimé(e)
[VT.Unknown] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | IDrive Background process : "C:\Program Files (x86)\IDriveWindows\id_bglaunch.exe" min [7][x] -> Supprimé(e)
[VT.Unknown] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | IDrive Tray : "C:\Program Files (x86)\IDriveWindows\id_tray.exe" min [7][x] -> Supprimé(e)
[VT.PUP.Optional.AdvancedSystemProtector] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | ASO-System Protector_startup : "C:\Program Files (x86)\Advanced System Optimizer 3\SystemProtector.exe" autolaunch [7][x] -> Supprimé(e)

¤¤¤ Tâches : 2 ¤¤¤
[Suspicious.Path] %WINDIR%\Tasks\Advanced System Optimizer.job -- C:\Program Files (x86)\Advanced System Optimizer 3\ASO3.exe (-autorun) -> Supprimé(e)
[Suspicious.Path] %WINDIR%\Tasks\ASOService.job -- C:\Program Files (x86)\Advanced System Optimizer 3\ASO3.exe (-checklastscanstatus) -> Supprimé(e)

¤¤¤ Fichiers : 2 ¤¤¤
[PUP][Répertoire] C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} -> Supprimé(e)
[PUP][Fichier] C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}\desktop.ini -> Supprimé(e)
[PUP][Répertoire] C:\Program Files (x86)\IObit\Advanced SystemCare -> Supprimé(e)
[PUP][Répertoire] C:\Program Files (x86)\IObit\Advanced SystemCare\Update -> Supprimé(e)

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 975 (Driver: Non chargé [0x0]) ¤¤¤
[IAT:Addr] (explorer.exe) user32!SetWindowPos : C:\Program Files (x86)\IObit\Classic Start\StartMenuDll.dll @ 0x9149ca0
[IAT:Addr] (explorer.exe) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!FreeLibraryWhenCallbackReturns : C:\Windows\System32\ntdll.dll @ 0x7fb7b792f1c
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!CloseThreadpoolIo : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c0c74
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!StartThreadpoolIo : C:\Windows\System32\ntdll.dll @ 0x7fb7b78a5e0
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!CancelThreadpoolIo : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c0d30
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ shlwapi.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ shlwapi.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ shell32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ uxtheme.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ GdiPlus.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ GdiPlus.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ imm32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ msctf.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ ole32.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ ole32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ dui70.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ dui70.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ comctl32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ duser.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ SndVolSSO.DLL) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ SndVolSSO.DLL) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ oleacc.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ Windows.UI.Immersive.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ Windows.UI.Immersive.dll) kernel32!WaitForThreadpoolWaitCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c63b8
[IAT:Addr] (explorer.exe @ Windows.UI.Immersive.dll) kernel32!CloseThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6280
[IAT:Addr] (explorer.exe @ Windows.UI.Immersive.dll) kernel32!SetThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b793cec
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!SetThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ca00
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!WaitForThreadpoolTimerCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b792290
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!CloseThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ce58
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!FreeLibraryWhenCallbackReturns : C:\Windows\System32\ntdll.dll @ 0x7fb7b792f1c
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!EventEnabled : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ab60
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ explorerframe.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ twinui.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ wtsapi32.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ actxprxy.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ wpncore.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!InitializeConditionVariable : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!WakeAllConditionVariable : C:\Windows\System32\ntdll.dll @ 0x7fb7b77bd44
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!SleepConditionVariableCS : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a9405c
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!CloseThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6a60
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!SubmitThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b77d950
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!WaitForThreadpoolWorkCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6ea8
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!CloseThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ce58
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!SetThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ca00
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!WaitForThreadpoolTimerCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b792290
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!CloseThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6280
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!SetThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b793cec
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!WaitForThreadpoolWaitCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c63b8
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!FreeLibraryWhenCallbackReturns : C:\Windows\System32\ntdll.dll @ 0x7fb7b792f1c
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!DeleteProcThreadAttributeList : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78aa3860
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!UpdateProcThreadAttribute : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78aa16a0
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!InitializeProcThreadAttributeList : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78aa17c8
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ slc.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ slc.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ sppc.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ sppc.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ sppc.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ sppc.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ sppc.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ sppc.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ sppc.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ dxgi.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!InitOnceInitialize : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ ELSCore.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ InputSwitch.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ InputSwitch.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ elslad.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ elslad.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!TryEnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b7778e0
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ urlmon.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ stobject.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ stobject.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ stobject.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ stobject.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ stobject.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ stobject.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ stobject.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ stobject.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ batmeter.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ batmeter.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ batmeter.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ batmeter.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ batmeter.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ sxs.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ prnfldr.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ prnfldr.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ winspool.drv) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ DXP.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ DXP.dll) kernel32!InterlockedPushEntrySList : C:\Windows\System32\ntdll.dll @ 0x7fb7b775ae0
[IAT:Addr] (explorer.exe @ DXP.dll) kernel32!InterlockedPopEntrySList : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ec0
[IAT:Addr] (explorer.exe @ DXP.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ DXP.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ DXP.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ DXP.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ DXP.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ DXP.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ DXP.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ shdocvw.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ shdocvw.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ shdocvw.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ shdocvw.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ shdocvw.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ Syncreg.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ Syncreg.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ Syncreg.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ Syncreg.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ Syncreg.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ Syncreg.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ Syncreg.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ Syncreg.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ Syncreg.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ Syncreg.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) advapi32!TraceEvent : C:\Windows\System32\ntdll.dll @ 0x7fb7b7f28e0
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) advapi32!RegisterTraceGuidsA : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b4578
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ HelpPaneProxy.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ wpnprv.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!VerSetConditionMask : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd8c4
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ LavasoftTcpService64.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ AltTab.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ AltTab.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ mdnsNSP.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ authui.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ authui.dll) kernel32!SetThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ca00
[IAT:Addr] (explorer.exe @ authui.dll) kernel32!WaitForThreadpoolTimerCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b792290
[IAT:Addr] (explorer.exe @ authui.dll) kernel32!CloseThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ce58
[IAT:Addr] (explorer.exe @ authui.dll) kernel32!FreeLibraryWhenCallbackReturns : C:\Windows\System32\ntdll.dll @ 0x7fb7b792f1c
[IAT:Addr] (explorer.exe @ authui.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ authui.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ authui.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ pnidui.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ NcaApi.dll) kernel32!SetThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b793cec
[IAT:Addr] (explorer.exe @ NcaApi.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ NcaApi.dll) kernel32!CloseThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6280
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) advapi32!TraceEvent : C:\Windows\System32\ntdll.dll @ 0x7fb7b7f28e0
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ wpdshserviceobj.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ PortableDeviceApi.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ srchadmin.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!CloseThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6a60
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!SubmitThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b77d950
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ srchadmin.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ sqmapi.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ sqmapi.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ sqmapi.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ sqmapi.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ sqmapi.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ sqmapi.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ sqmapi.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ sqmapi.dll) kernel32!VerSetConditionMask : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd8c4
[IAT:Addr] (explorer.exe @ sqmapi.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ sqmapi.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ sqmapi.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ bthprops.cpl) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ SyncCenter.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!SetWaitableTimerEx : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91620
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ SyncCenter.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!SubmitThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b77d950
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!CloseThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6a60
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ Actioncenter.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ Actioncenter.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ Actioncenter.dll) advapi32!EventEnabled : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ab60
[IAT:Addr] (explorer.exe @ Actioncenter.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ Actioncenter.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ Actioncenter.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ wevtapi.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ imapi2.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ imapi2.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ imapi2.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ imapi2.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ imapi2.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ imapi2.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ imapi2.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ imapi2.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ imapi2.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ imapi2.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ linkinfo.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ ntshrui.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ NetworkExplorer.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ hgcpl.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ comdlg32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ ShellExtension.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ EhStorShell.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ EhStorShell.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ EhStorShell.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ EhStorShell.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ msiltcfg.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ msiltcfg.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ msiltcfg.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ msiltcfg.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ msi.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ apprepapi.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ apprepapi.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ apprepapi.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ wscinterop.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ wscapi.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ wscapi.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ wscui.cpl) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ wscui.cpl) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!InterlockedPopEntrySList : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ec0
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!InterlockedPushEntrySList : C:\Windows\System32\ntdll.dll @ 0x7fb7b775ae0
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!IsThreadpoolTimerSet : C:\Windows\System32\ntdll.dll @ 0x7fb7b77c70c
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!CloseThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ce58
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!WaitForThreadpoolTimerCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b792290
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!SetThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ca00
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!WakeAllConditionVariable : C:\Windows\System32\ntdll.dll @ 0x7fb7b77bd44
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!SleepConditionVariableCS : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a9405c
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!InitializeConditionVariable : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!SubmitThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b77d950
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!CloseThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6a60
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!WaitForThreadpoolWorkCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6ea8
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!SetThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b793cec
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!WaitForThreadpoolWaitCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c63b8
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!CloseThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6280
[IAT:Addr] (explorer.exe @ werconcpl.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ werconcpl.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ werconcpl.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ wercplsupport.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ wercplsupport.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ wercplsupport.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ wercplsupport.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ wercplsupport.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ wercplsupport.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ wercplsupport.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ wercplsupport.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ wercplsupport.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ wercplsupport.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!CloseThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6a60
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!CloseThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6280
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!WaitForThreadpoolWaitCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c63b8
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!SubmitThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b77d950
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!SetThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b793cec
[IAT:Addr] (explorer.exe @ hcproviders.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ atiacm64.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ atiacm64.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ atiacm64.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ atiacm64.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ atiacm64.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ atiacm64.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ atiacm64.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ atiacm64.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ zipfldr.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ zipfldr.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ zipfldr.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ zipfldr.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ zipfldr.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ chartv.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ chartv.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ chartv.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ chartv.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ chartv.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ chartv.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ chartv.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ chartv.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ IconCodecService.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ davclnt.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ davclnt.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ davclnt.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ davhlpr.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ StartMenuDll.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!FreeLibraryWhenCallbackReturns : C:\Windows\System32\ntdll.dll @ 0x7fb7b792f1c
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!CloseThreadpoolIo : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c0c74
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!StartThreadpoolIo : C:\Windows\System32\ntdll.dll @ 0x7fb7b78a5e0
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!CancelThreadpoolIo : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c0d30
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ advapi32.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ shlwapi.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ shlwapi.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ shell32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ uxtheme.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ GdiPlus.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ GdiPlus.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ imm32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ msctf.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ ole32.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ ole32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!SetThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ca00
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!WaitForThreadpoolTimerCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b792290
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!CloseThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ce58
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!FreeLibraryWhenCallbackReturns : C:\Windows\System32\ntdll.dll @ 0x7fb7b792f1c
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ explorerframe.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!EventEnabled : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ab60
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ explorerframe.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ explorerframe.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ duser.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ dui70.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ dui70.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ actxprxy.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ comctl32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ sxs.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ Bcp47Langs.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ shdocvw.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ shdocvw.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ shdocvw.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ shdocvw.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ shdocvw.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ linkinfo.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ ntshrui.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ NetworkExplorer.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ davclnt.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ davclnt.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ davclnt.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ davhlpr.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) kernel32!VerSetConditionMask : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd8c4
[IAT:Addr] (explorer.exe @ StructuredQuery.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ winmm.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ winmm.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ WINMMBASE.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ WINMMBASE.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ dlnashext.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ dlnashext.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!WaitForThreadpoolWorkCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6ea8
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!FreeLibraryWhenCallbackReturns : C:\Windows\System32\ntdll.dll @ 0x7fb7b792f1c
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!CloseThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6a60
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!SetThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b793cec
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!WaitForThreadpoolWaitCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c63b8
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!SubmitThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b77d950
[IAT:Addr] (explorer.exe @ DevDispItemProvider.dll) kernel32!CloseThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6280
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!TryEnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b7778e0
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ urlmon.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ urlmon.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!DeleteProcThreadAttributeList : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78aa3860
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!UpdateProcThreadAttribute : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78aa16a0
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!InitializeProcThreadAttributeList : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78aa17c8
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ iertutil.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!InitializeConditionVariable : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!WakeAllConditionVariable : C:\Windows\System32\ntdll.dll @ 0x7fb7b77bd44
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!SleepConditionVariableCS : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a9405c
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!CloseThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6a60
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!SubmitThreadpoolWork : C:\Windows\System32\ntdll.dll @ 0x7fb7b77d950
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!WaitForThreadpoolWorkCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6ea8
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!CloseThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ce58
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!SetThreadpoolTimer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ca00
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!WaitForThreadpoolTimerCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b792290
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!CloseThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c6280
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!SetThreadpoolWait : C:\Windows\System32\ntdll.dll @ 0x7fb7b793cec
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!WaitForThreadpoolWaitCallbacks : C:\Windows\System32\ntdll.dll @ 0x7fb7b7c63b8
[IAT:Addr] (explorer.exe @ wininet.dll) kernel32!FreeLibraryWhenCallbackReturns : C:\Windows\System32\ntdll.dll @ 0x7fb7b792f1c
[IAT:Addr] (explorer.exe @ EhStorShell.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ EhStorShell.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ EhStorShell.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ EhStorShell.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!TraceMessage : C:\Windows\System32\ntdll.dll @ 0x7fb7b7928f0
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ EhStorShell.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ wtsapi32.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ IDSyncIntIcon64.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ comdlg32.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ comdlg32.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ winspool.drv) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ ShellExtension.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ ShellExtension.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ tiptsf.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ tiptsf.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) advapi32!UnregisterTraceGuids : C:\Windows\System32\ntdll.dll @ 0x7fb7b7907fc
[IAT:Addr] (explorer.exe @ UIRibbon.dll) advapi32!RegisterTraceGuidsA : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b4578
[IAT:Addr] (explorer.exe @ UIRibbon.dll) advapi32!TraceEvent : C:\Windows\System32\ntdll.dll @ 0x7fb7b7f28e0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) advapi32!GetTraceEnableFlags : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd11c
[IAT:Addr] (explorer.exe @ UIRibbon.dll) advapi32!GetTraceEnableLevel : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0ec
[IAT:Addr] (explorer.exe @ UIRibbon.dll) advapi32!GetTraceLoggerHandle : C:\Windows\System32\ntdll.dll @ 0x7fb7b7bd0b0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) advapi32!RegisterTraceGuidsW : C:\Windows\System32\ntdll.dll @ 0x7fb7b7b43e8
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!QueryDepthSList : C:\Windows\System32\ntdll.dll @ 0x7fb7b775af0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!InterlockedFlushSList : C:\Windows\System32\ntdll.dll @ 0x7fb7b775480
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!InterlockedPushEntrySList : C:\Windows\System32\ntdll.dll @ 0x7fb7b775ae0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!InterlockedPopEntrySList : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ec0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!InitializeSListHead : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ec10
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!InitializeSRWLock : C:\Windows\System32\ntdll.dll @ 0x7fb7b777740
[IAT:Addr] (explorer.exe @ UIRibbon.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ UIRibbon.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ UIRibbon.dll) user32!DefWindowProcA : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ab8
[IAT:Addr] (explorer.exe @ IconCodecService.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!ReleaseSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775290
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!AcquireSRWLockExclusive : C:\Windows\System32\ntdll.dll @ 0x7fb7b775260
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!ReleaseSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b7754d0
[IAT:Addr] (explorer.exe @ twext.dll) kernel32!AcquireSRWLockShared : C:\Windows\System32\ntdll.dll @ 0x7fb7b775490
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ mbamext.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ A2CONTMENU64.DLL) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ oledlg.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ oleacc.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ ZABackupContextMenuExt.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ ZABackupContextMenuExt.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ ZABackupContextMenuExt.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ ZABackupContextMenuExt.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ ZABackupContextMenuExt.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ ZABackupContextMenuExt.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ ZABackupContextMenuExt.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ IObitSmartDefragExtension.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ IObitSmartDefragExtension.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ IObitSmartDefragExtension.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ IObitSmartDefragExtension.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ IObitSmartDefragExtension.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ IObitSmartDefragExtension.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ IObitSmartDefragExtension.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ IObitSmartDefragExtension.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ creator-context-menu.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ creator-context-menu.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ creator-context-menu.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ creator-context-menu.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ creator-context-menu.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ encoding-conversion.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ encoding-conversion.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ atom.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ atom.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ msvcp110.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ msvcp110.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ msvcp110.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ msvcp110.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ msvcp110.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!InterlockedPopEntrySList : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ec0
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!InterlockedFlushSList : C:\Windows\System32\ntdll.dll @ 0x7fb7b775480
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!QueryDepthSList : C:\Windows\System32\ntdll.dll @ 0x7fb7b775af0
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!InterlockedPushEntrySList : C:\Windows\System32\ntdll.dll @ 0x7fb7b775ae0
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!TryEnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b7778e0
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!InitializeSListHead : C:\Windows\System32\ntdll.dll @ 0x7fb7b77ec10
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ msvcr110.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ brand.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ brand.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ K7TSSExt64.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ ISCM64.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ ISCM64.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ ISCM64.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ ISCM64.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ ISCM64.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ ISCM64.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ ISCM64.dll) kernel32!TryEnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b7778e0
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ UninstallMenuRight.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ IDContextMenu.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ DefragglerShell64.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ DefragglerShell64.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ DefragglerShell64.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ DefragglerShell64.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ DefragglerShell64.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ DefragglerShell64.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ DefragglerShell64.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ DefragglerShell64.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ CLVDShellExt10.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ CLVDShellExt10.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ CLVDShellExt10.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ CLVDShellExt10.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ CLVDShellExt10.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ CLVDShellExt10.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ CLVDShellExt10.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ CLVDShellExt10.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ syncui.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ syncui.dll) user32!DefDlgProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771b95
[IAT:Addr] (explorer.exe @ syncui.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ syncui.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ syncui.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ syncui.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ syncui.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ syncui.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ synceng.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ synceng.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ synceng.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ synceng.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ ASCExtMenu_64.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ RUExt.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0
[IAT:Addr] (explorer.exe @ acppage.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ acppage.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ acppage.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ acppage.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ acppage.dll) kernel32!EncodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b791d88
[IAT:Addr] (explorer.exe @ acppage.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ acppage.dll) kernel32!DecodePointer : C:\Windows\System32\ntdll.dll @ 0x7fb7b77b4d0
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ msi.dll) kernel32!ExitThread : C:\Windows\System32\ntdll.dll @ 0x7fb7b783f80
[IAT:Addr] (explorer.exe @ msi.dll) user32!DefWindowProcW : C:\Windows\System32\ntdll.dll @ 0x7fb7b771ac9
[IAT:Addr] (explorer.exe @ sfc_os.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ apprepapi.dll) advapi32!EventRegister : C:\Windows\System32\ntdll.dll @ 0x7fb7b7a760c
[IAT:Addr] (explorer.exe @ apprepapi.dll) advapi32!EventUnregister : C:\Windows\System32\ntdll.dll @ 0x7fb7b790594
[IAT:Addr] (explorer.exe @ apprepapi.dll) advapi32!EventWrite : C:\Windows\System32\ntdll.dll @ 0x7fb7b792bb8
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!HeapReAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b77acd0
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!HeapAlloc : C:\Windows\System32\ntdll.dll @ 0x7fb7b775670
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!InitOnceExecuteOnce : C:\Windows\System32\KERNELBASE.dll @ 0x7fb78a91be0
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!ResolveDelayLoadedAPI : C:\Windows\System32\ntdll.dll @ 0x7fb7b78f8b0
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!LeaveCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771010
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!EnterCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b771060
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!DeleteCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b777860
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!InitializeCriticalSection : C:\Windows\System32\ntdll.dll @ 0x7fb7b77f160
[IAT:Addr] (explorer.exe @ apprepapi.dll) kernel32!HeapSize : C:\Windows\System32\ntdll.dll @ 0x7fb7b77eff0

¤¤¤ Navigateurs web : 1 ¤¤¤
[PUP][FIREFX:Addon] gl1x1oq0.default : DVDVideoSoft YouTube MP3 and Video Download [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] -> Supprimé(e)

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD10EZEX-60ZF5A0 +++++
--- User ---
[MBR] d8cd0d135dab489fc27707361f7d91a6
[BSP] 921c16db8e2729252f5298a5b0f07e55 : Empty|VT.Unknown MBR Code
Partition table:
0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 1023 MB
1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2097152 | Size: 360 MB
2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 2834432 | Size: 128 MB
3 - Basic data partition | Offset (sectors): 3096576 | Size: 938983 MB
4 - [SYSTEM] Basic data partition | Offset (sectors): 1926133760 | Size: 13374 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Generic- Multi-Card USB Device +++++
--- User ---
[MBR] a9c7ad7c5cacdaef050a2bc5ffe9be51
[BSP] 2995b0fbf3d51898c15356c556deae6e : Compressed BootMgr|VT.Unknown MBR Code
Partition table:
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive2: HP Photosmart C3170 USB Device +++++
Error reading User MBR! ([15] Le périphérique n?est pas prêt. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive3: Generic STORAGE DEVICE USB Device +++++
Error reading User MBR! ([15] Le périphérique n?est pas prêt. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive4: WD Elements 10A8 USB Device +++++
--- User ---
[MBR] 542ab4d6e4b507d1b758de07a9aa3fe4
[BSP] 3fab0dc8f8592463897362a03edd8ac2 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [SYSTEM] | Offset (sectors): 2048 | Size: 1023 MB
1 - | Offset (sectors): 2097152 | Size: 360 MB
2 - | Offset (sectors): 2834432 | Size: 128 MB
3 - | Offset (sectors): 3096576 | Size: 504464 MB
4 - | Offset (sectors): 1036239576 | Size: 167985 MB
5 - Ba | Offset (sectors): 1380274176 | Size: 255238 MB
6 - po | Offset (sectors): 1903001600 | Size: 44 MB
7 - | Offset (sectors): 1903091712 | Size: 46 MB
8 - Ba | Offset (sectors): 1903185920 | Size: 24544 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

Signaler le contenu de ce document