Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Win7: Chrome öffnet selbstständig Werbe-Tabs

Win7: Chrome öffnet selbstständig Werbe-Tabs


Log-Analyse und Auswertung: Win7: Chrome öffnet selbstständig Werbe-Tabs

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 30.11.2014, 17:25   #1
Lasiandra
 
Win7: Chrome öffnet selbstständig Werbe-Tabs - Icon17

Win7: Chrome öffnet selbstständig Werbe-Tabs


Hallo ihr Lieben!

Ich hab ein "kleines" Problem, das mich mittlerweile etwas ärgert. Willkürlich, wenn ich Google Chrome geöffnet habe, öffnen sich 2 Werbe-Tabs mit unterschiedlicher Werbung - meist für Browser-Games.
Nun hab ich schon einige Google-Suchanfragen durchgeackert, konnte aber leider nichts an der Situation ändern. Probiert habe ich: Malwarebytes, Avira, CCCleaner und Spybot Search&Destroy.
Nun bitte ich euch um eure Hilfe, da ich nicht mehr weiß was ich tun kann, ohne irgendetwas Schädliches anzurichten ^^

Im Anhang nun meine Logfiles, ich hoffe ich hab alle:

defogger_disable.log
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 16:37 on 30/11/2014 (Lasiandra)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
Gmer.txt
Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-11-30 16:57:45
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 TOSHIBA_ rev.AX00 931,51GB
Running: knd370g8.exe; Driver: C:\Users\LASIAN~1\AppData\Local\Temp\pwloakow.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                                   fffff80002feb000 86 bytes [00, 00, E0, 00, 48, 54, 61, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 789                                                                   fffff80002feb105 60 bytes [FA, FF, FF, 00, 41, 83, 0A, ...]

---- User code sections - GMER 2.1 ----

.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\kernel32.dll!RegSetValueExW                       000000007738a400 7 bytes JMP 000000016fff0228
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\kernel32.dll!RegQueryValueExW                     0000000077393f20 5 bytes JMP 000000016fff0180
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\kernel32.dll!RegDeleteValueW                      00000000773affb0 5 bytes JMP 000000016fff01b8
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                00000000773bf2e0 5 bytes JMP 000000016fff0110
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx              00000000773e9a30 7 bytes JMP 000000016fff00d8
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\kernel32.dll!K32GetModuleInformation              00000000773f94c0 5 bytes JMP 000000016fff0148
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\kernel32.dll!RegSetValueExA                       00000000774187e0 7 bytes JMP 000000016fff01f0
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                  000007fefe9289f0 8 bytes JMP 000007fffd5a01f0
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                000007fefe92be50 8 bytes JMP 000007fffd5a01b8
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\ole32.dll!CoCreateInstance                        000007feff147490 11 bytes JMP 000007fffd5a0228
.text     C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1480] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                       000007feff15bf00 7 bytes JMP 000007fffd5a0260
.text     C:\Windows\system32\Dwm.exe[1944] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                     000007fefd5b2db0 5 bytes JMP 000007fffd5a0180
.text     C:\Windows\system32\Dwm.exe[1944] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                000007fefd5b37d0 7 bytes JMP 000007fffd5a00d8
.text     C:\Windows\system32\Dwm.exe[1944] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                  000007fefd5b8ef0 6 bytes JMP 000007fffd5a0148
.text     C:\Windows\system32\Dwm.exe[1944] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                              000007fefd5caf60 5 bytes JMP 000007fffd5a0110
.text     C:\Windows\system32\Dwm.exe[1944] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                               000007fefe9289f0 8 bytes JMP 000007fffd5a01f0
.text     C:\Windows\system32\Dwm.exe[1944] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                             000007fefe92be50 8 bytes JMP 000007fffd5a01b8
.text     C:\Windows\system32\Dwm.exe[1944] C:\Windows\system32\dxgi.dll!CreateDXGIFactory                                                     000007fef8aadc88 5 bytes JMP 000007fff88a00d8
.text     C:\Windows\system32\Dwm.exe[1944] C:\Windows\system32\dxgi.dll!CreateDXGIFactory1                                                    000007fef8aade10 5 bytes JMP 000007fff88a0110
.text     C:\Windows\System32\igfxpers.exe[2740] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                          000007fefe9289f0 8 bytes JMP 000007fffd5a01f0
.text     C:\Windows\System32\igfxpers.exe[2740] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                        000007fefe92be50 8 bytes JMP 000007fffd5a01b8
.text     C:\Program Files\Elantech\ETDCtrl.exe[2840] C:\Windows\system32\ole32.dll!CoCreateInstance                                           000007feff147490 11 bytes JMP 000007fffd5a0228
.text     C:\Program Files\Elantech\ETDCtrl.exe[2840] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                          000007feff15bf00 7 bytes JMP 000007fffd5a0260
.text     C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe[2872] C:\Windows\system32\kernel32.dll!RegSetValueExW                000000007738a400 7 bytes JMP 000000016fff0228
.text     C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe[2872] C:\Windows\system32\kernel32.dll!RegQueryValueExW              0000000077393f20 5 bytes JMP 000000016fff0180
.text     C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe[2872] C:\Windows\system32\kernel32.dll!RegDeleteValueW               00000000773affb0 5 bytes JMP 000000016fff01b8
.text     C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe[2872] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW         00000000773bf2e0 5 bytes JMP 000000016fff0110
.text     C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe[2872] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx       00000000773e9a30 7 bytes JMP 000000016fff00d8
.text     C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe[2872] C:\Windows\system32\kernel32.dll!K32GetModuleInformation       00000000773f94c0 5 bytes JMP 000000016fff0148
.text     C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe[2872] C:\Windows\system32\kernel32.dll!RegSetValueExA                00000000774187e0 7 bytes JMP 000000016fff01f0
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                0000000076c51f0e 7 bytes JMP 000000016e714b10
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                  0000000076c55bad 7 bytes JMP 000000016e7154b0
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                  0000000076c61409 7 bytes JMP 000000016e714e50
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                 0000000076c6ea45 7 bytes JMP 000000016e714b00
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                         0000000076cf8e24 7 bytes JMP 000000016e7145c0
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                         0000000076cf8ea9 5 bytes JMP 000000016e714670
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                           0000000076cf91ff 5 bytes JMP 000000016e7145d0
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                              0000000076331d29 5 bytes JMP 000000016e714580
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                            0000000076331dd7 5 bytes JMP 000000016e714540
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                0000000076332ab1 5 bytes JMP 000000016e714680
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                   0000000076332d17 5 bytes JMP 000000016e714360
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                   0000000076e98a29 5 bytes JMP 000000016e713a40
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                               0000000076ea4572 5 bytes JMP 000000016e7142e0
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                               0000000076ebe567 5 bytes JMP 000000016e714350
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW                          0000000076ee07d7 5 bytes JMP 000000016e713850
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                        0000000076ef7a5c 5 bytes JMP 000000016e7142d0
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                           000000007639e96b 5 bytes JMP 000000016e713b60
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                             000000007639eba5 5 bytes JMP 000000016e713b80
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                  0000000076fc5ea5 5 bytes JMP 000000016e713a00
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                   0000000076ff9d0b 5 bytes JMP 000000016e713990
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\ksuser.dll!KsCreatePin + 35                                  0000000074ab11a8 2 bytes [AB, 74]
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\ksuser.dll!KsCreatePin + 248                                 0000000074ab127d 2 bytes CALL 76c514b9 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\ksuser.dll!KsCreatePin + 395                                 0000000074ab1310 2 bytes CALL 76c514b9 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\ksuser.dll!KsCreateAllocator + 21                            0000000074ab13a8 2 bytes [AB, 74]
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\ksuser.dll!KsCreateClock + 21                                0000000074ab1422 2 bytes [AB, 74]
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\ksuser.dll!KsCreateTopologyNode + 19                         0000000074ab1498 2 bytes [AB, 74]
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkD3dContextCreate + 4                      00000000746e1825 2 bytes JMP 763c6125 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkD3dContextDestroy + 4                     00000000746e1830 2 bytes JMP 763c6145 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkD3dContextDestroyAll + 4                  00000000746e183b 2 bytes JMP 763c6165 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkD3dDrawPrimitives2 + 4                    00000000746e1846 2 bytes JMP 763c5a05 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkD3dValidateTextureStageState + 4          00000000746e1851 2 bytes JMP 763c6185 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdAddAttachedSurface + 4                  00000000746e185c 2 bytes JMP 763c6265 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdAlphaBlt + 4                            00000000746e1867 2 bytes JMP 763c6285 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdAttachSurface + 4                       00000000746e1872 2 bytes JMP 763c62a5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdBeginMoCompFrame + 4                    00000000746e187d 2 bytes JMP 763c62c5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdBlt + 4                                 00000000746e1888 2 bytes JMP 763c5a25 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdCanCreateD3DBuffer + 4                  00000000746e1893 2 bytes JMP 763c62e5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdCanCreateSurface + 4                    00000000746e189e 2 bytes JMP 763c5aa5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdColorControl + 4                        00000000746e18a9 2 bytes JMP 763c6305 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdCreateD3DBuffer + 4                     00000000746e18b4 2 bytes JMP 763c6325 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdCreateDirectDrawObject + 4              00000000746e18bf 2 bytes JMP 76391fcb C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdCreateMoComp + 4                        00000000746e18ca 2 bytes JMP 763c6365 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdCreateSurface + 4                       00000000746e18d5 2 bytes JMP 763c5ac5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdCreateSurfaceEx + 4                     00000000746e18e0 2 bytes JMP 763c5b45 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdCreateSurfaceObject + 4                 00000000746e18eb 2 bytes JMP 763c5b65 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdDeleteDirectDrawObject + 4              00000000746e18f6 2 bytes JMP 763c68c5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdDeleteSurfaceObject + 4                 00000000746e1901 2 bytes JMP 763c5a85 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdDestroyD3DBuffer + 4                    00000000746e190c 2 bytes JMP 763c68e5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdDestroyMoComp + 4                       00000000746e1917 2 bytes JMP 763c6925 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdDestroySurface + 4                      00000000746e1922 2 bytes JMP 763c5ae5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdEndMoCompFrame + 4                      00000000746e192d 2 bytes JMP 763c6945 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdFlip + 4                                00000000746e1938 2 bytes JMP 763c6965 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdFlipToGDISurface + 4                    00000000746e1943 2 bytes JMP 763c6985 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetAvailDriverMemory + 4                00000000746e194e 2 bytes JMP 763c69a5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetBltStatus + 4                        00000000746e1959 2 bytes JMP 763c69c5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetDC + 4                               00000000746e1964 2 bytes JMP 763c69e5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetDriverInfo + 4                       00000000746e196f 2 bytes JMP 763c6a05 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetDriverState + 4                      00000000746e197a 2 bytes JMP 763c6a25 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetDxHandle + 4                         00000000746e1985 2 bytes JMP 763c6a45 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetFlipStatus + 4                       00000000746e1990 2 bytes JMP 763c6a65 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetInternalMoCompInfo + 4               00000000746e199b 2 bytes JMP 763c6a85 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetMoCompBuffInfo + 4                   00000000746e19a6 2 bytes JMP 763c6aa5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetMoCompFormats + 4                    00000000746e19b1 2 bytes JMP 763c6ac5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetMoCompGuids + 4                      00000000746e19bc 2 bytes JMP 763c6ae5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdGetScanLine + 4                         00000000746e19c7 2 bytes JMP 763c6b05 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdLock + 4                                00000000746e19d2 2 bytes JMP 763c6b25 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdLockD3D + 4                             00000000746e19dd 2 bytes JMP 763c5b85 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdQueryDirectDrawObject + 4               00000000746e19e8 2 bytes JMP 763c6b65 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdQueryMoCompStatus + 4                   00000000746e19f3 2 bytes JMP 763c6b85 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdReenableDirectDrawObject + 4            00000000746e19fe 2 bytes JMP 763c6bc3 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdReleaseDC + 4                           00000000746e1a09 2 bytes JMP 763c6be3 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdRenderMoComp + 4                        00000000746e1a14 2 bytes JMP 763c6c03 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdResetVisrgn + 4                         00000000746e1a1f 2 bytes JMP 763c5b05 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdSetColorKey + 4                         00000000746e1a2a 2 bytes JMP 763c6c23 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdSetExclusiveMode + 4                    00000000746e1a35 2 bytes JMP 763c6c43 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdSetGammaRamp + 4                        00000000746e1a40 2 bytes JMP 763c6c63 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdSetOverlayPosition + 4                  00000000746e1a4b 2 bytes JMP 763c6c83 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdUnattachSurface + 4                     00000000746e1a56 2 bytes JMP 763c6ca3 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdUnlock + 4                              00000000746e1a61 2 bytes JMP 763c6cc3 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdUnlockD3D + 4                           00000000746e1a6c 2 bytes JMP 763c5ba5 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdUpdateOverlay + 4                       00000000746e1a77 2 bytes JMP 763c6ce3 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdWaitForVerticalBlank + 4                00000000746e1a82 2 bytes JMP 763c6d03 C:\Windows\syswow64\GDI32.dll
.text     C:\Program Files (x86)\ChiconyCam\CECAPLF.exe[2880] C:\Windows\SysWOW64\d3d8thk.dll!OsThunkDdWaitForVerticalBlank + 52               00000000746e1ab2 2 bytes JMP 7563dc75 C:\Windows\syswow64\msvcrt.dll
.text     C:\Program Files\Logitech\SetPointP\SetPoint.exe[2928] C:\Windows\system32\kernel32.dll!RegSetValueExW                               000000007738a400 7 bytes JMP 000000016fff0228
.text     C:\Program Files\Logitech\SetPointP\SetPoint.exe[2928] C:\Windows\system32\kernel32.dll!RegQueryValueExW                             0000000077393f20 5 bytes JMP 000000016fff0180
.text     C:\Program Files\Logitech\SetPointP\SetPoint.exe[2928] C:\Windows\system32\kernel32.dll!RegDeleteValueW                              00000000773affb0 5 bytes JMP 000000016fff01b8
.text     C:\Program Files\Logitech\SetPointP\SetPoint.exe[2928] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                        00000000773bf2e0 5 bytes JMP 000000016fff0110
.text     C:\Program Files\Logitech\SetPointP\SetPoint.exe[2928] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                      00000000773e9a30 7 bytes JMP 000000016fff00d8
.text     C:\Program Files\Logitech\SetPointP\SetPoint.exe[2928] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                      00000000773f94c0 5 bytes JMP 000000016fff0148
.text     C:\Program Files\Logitech\SetPointP\SetPoint.exe[2928] C:\Windows\system32\kernel32.dll!RegSetValueExA                               00000000774187e0 7 bytes JMP 000000016fff01f0
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW          0000000076c51f0e 7 bytes JMP 000000016e714b10
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\kernel32.dll!RegSetValueExW            0000000076c55bad 7 bytes JMP 000000016e7154b0
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\kernel32.dll!RegSetValueExA            0000000076c61409 7 bytes JMP 000000016e714e50
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW           0000000076c6ea45 7 bytes JMP 000000016e714b00
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx   0000000076cf8e24 7 bytes JMP 000000016e7145c0
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation   0000000076cf8ea9 5 bytes JMP 000000016e714670
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW     0000000076cf91ff 5 bytes JMP 000000016e7145d0
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW        0000000076331d29 5 bytes JMP 000000016e714580
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW      0000000076331dd7 5 bytes JMP 000000016e714540
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW          0000000076332ab1 5 bytes JMP 000000016e714680
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary             0000000076332d17 5 bytes JMP 000000016e714360
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\USER32.dll!CreateWindowExW             0000000076e98a29 5 bytes JMP 000000016e713a40
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA         0000000076ea4572 5 bytes JMP 000000016e7142e0
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW         0000000076ebe567 5 bytes JMP 000000016e714350
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW    0000000076ee07d7 5 bytes JMP 000000016e713850
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo  0000000076ef7a5c 5 bytes JMP 000000016e7142d0
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList     000000007639e96b 5 bytes JMP 000000016e713b60
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo       000000007639eba5 5 bytes JMP 000000016e713b80
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket            0000000076fc5ea5 5 bytes JMP 000000016e713a00
.text     C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe[1260] C:\Windows\syswow64\ole32.dll!CoCreateInstance             0000000076ff9d0b 5 bytes JMP 000000016e713990
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\kernel32.dll!RegSetValueExW                         000000007738a400 7 bytes JMP 000000016fff0228
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\kernel32.dll!RegQueryValueExW                       0000000077393f20 5 bytes JMP 000000016fff0180
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\kernel32.dll!RegDeleteValueW                        00000000773affb0 5 bytes JMP 000000016fff01b8
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                  00000000773bf2e0 5 bytes JMP 000000016fff0110
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                00000000773e9a30 7 bytes JMP 000000016fff00d8
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                00000000773f94c0 5 bytes JMP 000000016fff0148
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\kernel32.dll!RegSetValueExA                         00000000774187e0 7 bytes JMP 000000016fff01f0
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                          000007fefd5b2db0 5 bytes JMP 000007fffd580180
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                     000007fefd5b37d0 7 bytes JMP 000007fffd5800d8
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                       000007fefd5b8ef0 6 bytes JMP 000007fffd580148
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                   000007fefd5caf60 5 bytes JMP 000007fffd580110
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                    000007fefe9289f0 8 bytes JMP 000007fffd5801f0
.text     C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[2512] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                  000007fefe92be50 8 bytes JMP 000007fffd5801b8
.text     C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe[2516] C:\Windows\system32\KERNELBASE.dll!FreeLibrary             000007fefd5b2db0 5 bytes JMP 000007fffd3d0180
.text     C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe[2516] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW        000007fefd5b37d0 7 bytes JMP 000007fffd3d00d8
.text     C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe[2516] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW          000007fefd5b8ef0 6 bytes JMP 000007fffd3d0148
.text     C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe[2516] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW      000007fefd5caf60 5 bytes JMP 000007fffd3d0110
.text     C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe[2516] C:\Windows\system32\ole32.dll!CoCreateInstance             000007feff147490 11 bytes JMP 000007fffd3d0228
.text     C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe[2516] C:\Windows\system32\ole32.dll!CoSetProxyBlanket            000007feff15bf00 7 bytes JMP 000007fffd3d0260
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                                      0000000076c51f0e 7 bytes JMP 000000016e714b10
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                                        0000000076c55bad 7 bytes JMP 000000016e7154b0
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                                        0000000076c61409 7 bytes JMP 000000016e714e50
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                                       0000000076c6ea45 7 bytes JMP 000000016e714b00
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx                               0000000076cf8e24 7 bytes JMP 000000016e7145c0
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation                               0000000076cf8ea9 5 bytes JMP 000000016e714670
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW                                 0000000076cf91ff 5 bytes JMP 000000016e7145d0
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                    0000000076331d29 5 bytes JMP 000000016e714580
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                  0000000076331dd7 5 bytes JMP 000000016e714540
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                      0000000076332ab1 5 bytes JMP 000000016e714680
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                         0000000076332d17 5 bytes JMP 000000016e714360
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                         0000000076e98a29 5 bytes JMP 000000016e713a40
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                     0000000076ea4572 5 bytes JMP 000000016e7142e0
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                     0000000076ebe567 5 bytes JMP 000000016e714350
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW                                0000000076ee07d7 5 bytes JMP 000000016e713850
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                              0000000076ef7a5c 5 bytes JMP 000000016e7142d0
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExW + 17                                0000000076c21401 2 bytes JMP 76c7b21b C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!EnumProcessModules + 17                                  0000000076c21419 2 bytes JMP 76c7b346 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 17                                0000000076c21431 2 bytes JMP 76cf8ea9 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 42                                0000000076c2144a 2 bytes CALL 76c548ad C:\Windows\syswow64\KERNEL32.dll
.text     ...                                                                                                                                  * 9
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!EnumDeviceDrivers + 17                                   0000000076c214dd 2 bytes JMP 76cf87a2 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameA + 17                            0000000076c214f5 2 bytes JMP 76cf8978 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!QueryWorkingSetEx + 17                                   0000000076c2150d 2 bytes JMP 76cf8698 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameW + 17                            0000000076c21525 2 bytes JMP 76cf8a62 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameW + 17                                  0000000076c2153d 2 bytes JMP 76c6fca8 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!EnumProcesses + 17                                       0000000076c21555 2 bytes JMP 76c768ef C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetProcessMemoryInfo + 17                                0000000076c2156d 2 bytes JMP 76cf8f61 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetPerformanceInfo + 17                                  0000000076c21585 2 bytes JMP 76cf8ac2 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!QueryWorkingSet + 17                                     0000000076c2159d 2 bytes JMP 76cf865c C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameA + 17                                  0000000076c215b5 2 bytes JMP 76c6fd41 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExA + 17                                0000000076c215cd 2 bytes JMP 76c7b2dc C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 20                            0000000076c216b2 2 bytes JMP 76cf8e24 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\Hotkey\Hotkey.exe[464] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 31                            0000000076c216bd 2 bytes JMP 76cf85f1 C:\Windows\syswow64\KERNEL32.dll
.text     C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe[3080] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList              000000007639e96b 5 bytes JMP 000000016e713b60
.text     C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe[3080] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                000000007639eba5 5 bytes JMP 000000016e713b80
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                0000000076c51f0e 7 bytes JMP 000000016e714b10
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                  0000000076c55bad 7 bytes JMP 000000016e7154b0
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                  0000000076c61409 7 bytes JMP 000000016e714e50
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                 0000000076c6ea45 7 bytes JMP 000000016e714b00
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx         0000000076cf8e24 7 bytes JMP 000000016e7145c0
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation         0000000076cf8ea9 5 bytes JMP 000000016e714670
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW           0000000076cf91ff 5 bytes JMP 000000016e7145d0
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW              0000000076331d29 5 bytes JMP 000000016e714580
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW            0000000076331dd7 5 bytes JMP 000000016e714540
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                0000000076332ab1 5 bytes JMP 000000016e714680
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                   0000000076332d17 5 bytes JMP 000000016e714360
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                  0000000076fc5ea5 5 bytes JMP 000000016e713a00
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\ole32.dll!CoCreateInstance                   0000000076ff9d0b 5 bytes JMP 000000016e713990
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList           000000007639e96b 5 bytes JMP 000000016e713b60
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo             000000007639eba5 5 bytes JMP 000000016e713b80
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\USER32.dll!CreateWindowExW                   0000000076e98a29 5 bytes JMP 000000016e713a40
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA               0000000076ea4572 5 bytes JMP 000000016e7142e0
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW               0000000076ebe567 5 bytes JMP 000000016e714350
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW          0000000076ee07d7 5 bytes JMP 000000016e713850
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo        0000000076ef7a5c 5 bytes JMP 000000016e7142d0
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExW + 17          0000000076c21401 2 bytes JMP 76c7b21b C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!EnumProcessModules + 17            0000000076c21419 2 bytes JMP 76c7b346 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 17          0000000076c21431 2 bytes JMP 76cf8ea9 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 42          0000000076c2144a 2 bytes CALL 76c548ad C:\Windows\syswow64\kernel32.dll
.text     ...                                                                                                                                  * 9
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!EnumDeviceDrivers + 17             0000000076c214dd 2 bytes JMP 76cf87a2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameA + 17      0000000076c214f5 2 bytes JMP 76cf8978 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!QueryWorkingSetEx + 17             0000000076c2150d 2 bytes JMP 76cf8698 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameW + 17      0000000076c21525 2 bytes JMP 76cf8a62 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameW + 17            0000000076c2153d 2 bytes JMP 76c6fca8 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!EnumProcesses + 17                 0000000076c21555 2 bytes JMP 76c768ef C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetProcessMemoryInfo + 17          0000000076c2156d 2 bytes JMP 76cf8f61 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetPerformanceInfo + 17            0000000076c21585 2 bytes JMP 76cf8ac2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!QueryWorkingSet + 17               0000000076c2159d 2 bytes JMP 76cf865c C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameA + 17            0000000076c215b5 2 bytes JMP 76c6fd41 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExA + 17          0000000076c215cd 2 bytes JMP 76c7b2dc C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 20      0000000076c216b2 2 bytes JMP 76cf8e24 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe[3092] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 31      0000000076c216bd 2 bytes JMP 76cf85f1 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                   0000000076c51f0e 7 bytes JMP 000000016e714b10
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                     0000000076c55bad 7 bytes JMP 000000016e7154b0
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                     0000000076c61409 7 bytes JMP 000000016e714e50
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                    0000000076c6ea45 7 bytes JMP 000000016e714b00
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx            0000000076cf8e24 7 bytes JMP 000000016e7145c0
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation            0000000076cf8ea9 5 bytes JMP 000000016e714670
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW              0000000076cf91ff 5 bytes JMP 000000016e7145d0
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                 0000000076331d29 5 bytes JMP 000000016e714580
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW               0000000076331dd7 5 bytes JMP 000000016e714540
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                   0000000076332ab1 5 bytes JMP 000000016e714680
.text     C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe[3104] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                      0000000076332d17 5 bytes JMP 000000016e714360
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\kernel32.dll!RegSetValueExW                      000000007738a400 7 bytes JMP 000000016fff0228
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\kernel32.dll!RegQueryValueExW                    0000000077393f20 5 bytes JMP 000000016fff0180
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\kernel32.dll!RegDeleteValueW                     00000000773affb0 5 bytes JMP 000000016fff01b8
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW               00000000773bf2e0 5 bytes JMP 000000016fff0110
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx             00000000773e9a30 7 bytes JMP 000000016fff00d8
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\kernel32.dll!K32GetModuleInformation             00000000773f94c0 5 bytes JMP 000000016fff0148
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\kernel32.dll!RegSetValueExA                      00000000774187e0 7 bytes JMP 000000016fff01f0
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                 000007fefe9289f0 8 bytes JMP 000007fffd5a01f0
.text     C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE[3224] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList               000007fefe92be50 8 bytes JMP 000007fffd5a01b8
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\kernel32.dll!RegSetValueExW                000000007738a400 7 bytes JMP 000000016fff0228
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\kernel32.dll!RegQueryValueExW              0000000077393f20 5 bytes JMP 000000016fff0180
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\kernel32.dll!RegDeleteValueW               00000000773affb0 5 bytes JMP 000000016fff01b8
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW         00000000773bf2e0 5 bytes JMP 000000016fff0110
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx       00000000773e9a30 7 bytes JMP 000000016fff00d8
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\kernel32.dll!K32GetModuleInformation       00000000773f94c0 5 bytes JMP 000000016fff0148
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\kernel32.dll!RegSetValueExA                00000000774187e0 7 bytes JMP 000000016fff01f0
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                 000007fefd5b2db0 5 bytes JMP 000007fffd3d0180
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW            000007fefd5b37d0 7 bytes JMP 000007fffd3d00d8
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW              000007fefd5b8ef0 6 bytes JMP 000007fffd3d0148
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW          000007fefd5caf60 5 bytes JMP 000007fffd3d0110
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\ole32.dll!CoCreateInstance                 000007feff147490 11 bytes JMP 000007fffd3d0228
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                000007feff15bf00 7 bytes JMP 000007fffd3d0260
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo           000007fefe9289f0 8 bytes JMP 000007fffd3d01f0
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList         000007fefe92be50 8 bytes JMP 000007fffd3d01b8
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\d3d9.dll!Direct3DCreate9Ex                 000007fef1e02460 5 bytes JMP 000007fefd3d02d0
.text     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[3840] C:\Windows\system32\d3d9.dll!Direct3DCreate9                   000007fef1e396b0 6 bytes JMP 000007fefd3d0298
.text     C:\Windows\system32\wbem\unsecapp.exe[5256] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                           000007fefd5b2db0 5 bytes JMP 000007fffd5a0180
.text     C:\Windows\system32\wbem\unsecapp.exe[5256] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                      000007fefd5b37d0 7 bytes JMP 000007fffd5a00d8
.text     C:\Windows\system32\wbem\unsecapp.exe[5256] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                        000007fefd5b8ef0 6 bytes JMP 000007fffd5a0148
.text     C:\Windows\system32\wbem\unsecapp.exe[5256] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                    000007fefd5caf60 5 bytes JMP 000007fffd5a0110
.text     C:\Windows\system32\wbem\unsecapp.exe[5256] C:\Windows\system32\ole32.dll!CoCreateInstance                                           000007feff147490 11 bytes JMP 000007fffd5a0228
.text     C:\Windows\system32\wbem\unsecapp.exe[5256] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                          000007feff15bf00 7 bytes JMP 000007fffd5a0260
.text     C:\Windows\system32\wbem\unsecapp.exe[5256] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                     000007fefe9289f0 8 bytes JMP 000007fffd5a01f0
.text     C:\Windows\system32\wbem\unsecapp.exe[5256] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                   000007fefe92be50 8 bytes JMP 000007fffd5a01b8
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                    0000000076c21401 2 bytes JMP 76c7b21b C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                      0000000076c21419 2 bytes JMP 76c7b346 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                    0000000076c21431 2 bytes JMP 76cf8ea9 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                    0000000076c2144a 2 bytes CALL 76c548ad C:\Windows\syswow64\kernel32.dll
.text     ...                                                                                                                                  * 9
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                       0000000076c214dd 2 bytes JMP 76cf87a2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                0000000076c214f5 2 bytes JMP 76cf8978 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                       0000000076c2150d 2 bytes JMP 76cf8698 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                0000000076c21525 2 bytes JMP 76cf8a62 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                      0000000076c2153d 2 bytes JMP 76c6fca8 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                           0000000076c21555 2 bytes JMP 76c768ef C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                    0000000076c2156d 2 bytes JMP 76cf8f61 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                      0000000076c21585 2 bytes JMP 76cf8ac2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                         0000000076c2159d 2 bytes JMP 76cf865c C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                      0000000076c215b5 2 bytes JMP 76c6fd41 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                    0000000076c215cd 2 bytes JMP 76c7b2dc C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                0000000076c216b2 2 bytes JMP 76cf8e24 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe[2364] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                0000000076c216bd 2 bytes JMP 76cf85f1 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                      0000000076c51f0e 7 bytes JMP 000000016e714b10
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                        0000000076c55bad 7 bytes JMP 000000016e7154b0
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                        0000000076c61409 7 bytes JMP 000000016e714e50
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                       0000000076c6ea45 7 bytes JMP 000000016e714b00
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx               0000000076cf8e24 7 bytes JMP 000000016e7145c0
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation               0000000076cf8ea9 5 bytes JMP 000000016e714670
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                 0000000076cf91ff 5 bytes JMP 000000016e7145d0
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                    0000000076331d29 5 bytes JMP 000000016e714580
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                  0000000076331dd7 5 bytes JMP 000000016e714540
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                      0000000076332ab1 5 bytes JMP 000000016e714680
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                         0000000076332d17 5 bytes JMP 000000016e714360
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                 000000007639e96b 5 bytes JMP 000000016e713b60
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                   000000007639eba5 5 bytes JMP 000000016e713b80
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\USER32.dll!CreateWindowExW                         0000000076e98a29 5 bytes JMP 000000016e713a40
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                     0000000076ea4572 5 bytes JMP 000000016e7142e0
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                     0000000076ebe567 5 bytes JMP 000000016e714350
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW                0000000076ee07d7 5 bytes JMP 000000016e713850
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo              0000000076ef7a5c 5 bytes JMP 000000016e7142d0
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                        0000000076fc5ea5 5 bytes JMP 000000016e713a00
.text     C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe[7736] C:\Windows\syswow64\ole32.dll!CoCreateInstance                         0000000076ff9d0b 5 bytes JMP 000000016e713990
.text     C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe[6512] C:\Windows\system32\KERNELBASE.dll!FreeLibrary             000007fefd5b2db0 5 bytes JMP 000007fffd580180
.text     C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe[6512] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW        000007fefd5b37d0 7 bytes JMP 000007fffd5800d8
.text     C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe[6512] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW          000007fefd5b8ef0 6 bytes JMP 000007fffd580148
.text     C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe[6512] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW      000007fefd5caf60 5 bytes JMP 000007fffd580110
.text     C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe[6512] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo       000007fefe9289f0 8 bytes JMP 000007fffd5801f0
.text     C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe[6512] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList     000007fefe92be50 8 bytes JMP 000007fffd5801b8
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\kernel32.dll!RegSetValueExW                                                000000007738a400 7 bytes JMP 000000016fff0228
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                              0000000077393f20 5 bytes JMP 000000016fff0180
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                               00000000773affb0 5 bytes JMP 000000016fff01b8
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                         00000000773bf2e0 5 bytes JMP 000000016fff0110
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                       00000000773e9a30 7 bytes JMP 000000016fff00d8
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                       00000000773f94c0 5 bytes JMP 000000016fff0148
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                00000000774187e0 7 bytes JMP 000000016fff01f0
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                 000007fefd5b2db0 5 bytes JMP 000007fffd5a0180
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                            000007fefd5b37d0 7 bytes JMP 000007fffd5a00d8
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                              000007fefd5b8ef0 6 bytes JMP 000007fffd5a0148
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                          000007fefd5caf60 5 bytes JMP 000007fffd5a0110
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                           000007fefe9289f0 8 bytes JMP 000007fffd5a01f0
.text     C:\Windows\system32\notepad.exe[9068] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                         000007fefe92be50 8 bytes JMP 000007fffd5a01b8
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\kernel32.dll!RegSetValueExW                                                000000007738a400 7 bytes JMP 000000016fff0228
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                              0000000077393f20 5 bytes JMP 000000016fff0180
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                               00000000773affb0 5 bytes JMP 000000016fff01b8
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                         00000000773bf2e0 5 bytes JMP 000000016fff0110
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                       00000000773e9a30 7 bytes JMP 000000016fff00d8
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                       00000000773f94c0 5 bytes JMP 000000016fff0148
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                00000000774187e0 7 bytes JMP 000000016fff01f0
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                 000007fefd5b2db0 5 bytes JMP 000007fffd5a0180
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                            000007fefd5b37d0 7 bytes JMP 000007fffd5a00d8
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                              000007fefd5b8ef0 6 bytes JMP 000007fffd5a0148
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                          000007fefd5caf60 5 bytes JMP 000007fffd5a0110
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                           000007fefe9289f0 8 bytes JMP 000007fffd5a01f0
.text     C:\Windows\system32\notepad.exe[4208] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                         000007fefe92be50 8 bytes JMP 000007fffd5a01b8
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                      0000000076c51f0e 7 bytes JMP 000000016e714b10
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                        0000000076c55bad 7 bytes JMP 000000016e7154b0
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                        0000000076c61409 7 bytes JMP 000000016e714e50
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                       0000000076c6ea45 7 bytes JMP 000000016e714b00
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                               0000000076cf8e24 7 bytes JMP 000000016e7145c0
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                               0000000076cf8ea9 5 bytes JMP 000000016e714670
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                                 0000000076cf91ff 5 bytes JMP 000000016e7145d0
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                    0000000076331d29 5 bytes JMP 000000016e714580
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                  0000000076331dd7 5 bytes JMP 000000016e714540
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                      0000000076332ab1 5 bytes JMP 000000016e714680
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                         0000000076332d17 5 bytes JMP 000000016e714360
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                                 000000007639e96b 5 bytes JMP 000000016e713b60
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                   000000007639eba5 5 bytes JMP 000000016e713b80
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                         0000000076e98a29 5 bytes JMP 000000016e713a40
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                     0000000076ea4572 5 bytes JMP 000000016e7142e0
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                     0000000076ebe567 5 bytes JMP 000000016e714350
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW                                0000000076ee07d7 5 bytes JMP 000000016e713850
.text     C:\Users\Lasiandra\Desktop\knd370g8.exe[8772] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                              0000000076ef7a5c 5 bytes JMP 000000016e7142d0

---- Registry - GMER 2.1 ----

Reg       HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\4c809376116d                                                          
Reg       HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\4c809376116d@3c438e479087                                             0x0B 0x8A 0x12 0xA4 ...
Reg       HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\4c809376116d (not active ControlSet)                                      
Reg       HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\4c809376116d@3c438e479087                                                 0x0B 0x8A 0x12 0xA4 ...

---- EOF - GMER 2.1 ----

Addition.txt und FRST.txt kommen im Anhang, da es nicht mehr in den Post gepasst hat :/

Vielen Dank!
Lg. Lisa

 

Themen zu Win7: Chrome öffnet selbstständig Werbe-Tabs
.dll, appdata, autostart, avira, chrome, desktop, frage, google, harddisk, hotkey, logfiles, logitech, malwarebytes, ntoskrnl.exe, nvidia, officejet, problem, registry, scan, software, spybot, system, system32, temp, werbung, win7, öffnet


« Logfile nach Problemen mit GVU Trojaner ... | E-Mail Postfach geknackt - diverse Bedrohungen per Malwarebytes gefunden! »


Ähnliche Themen: Win7: Chrome öffnet selbstständig Werbe-Tabs


  1. Ungewünschte Werbe-Tabs im Chrome !
    Plagegeister aller Art und deren Bekämpfung - 14.09.2015 (9)
  2. Win7 : Google Chrome - Bei klick im Bereich auf Webseite ,öffnet sich Werbe Tab
    Log-Analyse und Auswertung - 04.08.2015 (13)
  3. Chrome/Opera öffnet werbe-tabs automatisch!
    Log-Analyse und Auswertung - 04.06.2015 (21)
  4. Chrome öffnet selbstständig Tabs / Internetverbindung bricht ab, bei geöffneten Browser
    Plagegeister aller Art und deren Bekämpfung - 24.03.2015 (11)
  5. Google Chrome unzählige Werbe Tabs
    Log-Analyse und Auswertung - 10.01.2015 (3)
  6. Chrome öffnet selbstständig neue Tabs mit Werbung
    Plagegeister aller Art und deren Bekämpfung - 02.01.2015 (13)
  7. Web-Browser Google Chrome öffnet ständig Werbe-Fenster und neue Tabs
    Plagegeister aller Art und deren Bekämpfung - 15.10.2014 (11)
  8. Chrome öffnet selbstständig neue Tabs mit Seiten wie Browsergames, Casinos, Finanztips usw.
    Log-Analyse und Auswertung - 19.09.2014 (7)
  9. Google Chrome unzählige Werbe Tabs
    Log-Analyse und Auswertung - 06.09.2014 (7)
  10. Google Chrome öffnet selbstständig Tabs und Fenster, auch wenn Browser geschlossen
    Plagegeister aller Art und deren Bekämpfung - 02.09.2014 (19)
  11. Google Chrome öffnet eigene Werbe-Tabs (marketittzer.net - Weiterleitung zu andere Werbeseiten)
    Plagegeister aller Art und deren Bekämpfung - 21.07.2014 (24)
  12. win7: google chrome öffnet automatisch tabs mit werbung
    Log-Analyse und Auswertung - 04.06.2014 (19)
  13. win7: google chrome öffnet automatisch tabs mit werbung, danke an M-K- D-B!
    Lob, Kritik und Wünsche - 04.06.2014 (0)
  14. Win7: Firefox öffnet selbstständig neue Tabs
    Plagegeister aller Art und deren Bekämpfung - 01.06.2014 (25)
  15. Google Chrome öffnet Tabs selbstständig und downloaded selbstständig
    Plagegeister aller Art und deren Bekämpfung - 09.05.2014 (9)
  16. Firefox öffnet sowohl neue Tabs als auch Werbe-Videos selbstständig!
    Log-Analyse und Auswertung - 09.02.2014 (49)
  17. Windows 7 (64 bit): Firefox öffnet selbstständig "Werbe-Tabs"
    Log-Analyse und Auswertung - 24.11.2013 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Win7: Chrome öffnet selbstständig Werbe-Tabs - Hallo ihr Lieben! Ich hab ein "kleines" Problem, das mich mittlerweile etwas ärgert. Willkürlich, wenn ich Google Chrome geöffnet habe, öffnen sich 2 Werbe-Tabs mit unterschiedlicher Werbung - meist für - Win7: Chrome öffnet selbstständig Werbe-Tabs...
Archiv
Du betrachtest: Win7: Chrome öffnet selbstständig Werbe-Tabs auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131