Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Windows7 unerwünschte Programme SlimCleanerPlus

Windows7 unerwünschte Programme SlimCleanerPlus


Plagegeister aller Art und deren Bekämpfung: Windows7 unerwünschte Programme SlimCleanerPlus

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 07.07.2015, 15:14   #2
petti
 
Windows7 unerwünschte Programme SlimCleanerPlus - Standard

Windows7 unerwünschte Programme SlimCleanerPlus


Schritt 3
gmer

Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-07-07 15:31:54
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 WDC_WD3200BEKT-60V5T1 rev.12.01A12 298,09GB
Running: Gmer-19357.exe; Driver: C:\Users\Anwender\AppData\Local\Temp\awddqkow.sys


---- User code sections - GMER 2.1 ----

.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                                                           0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                                             0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                                                           0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                                                           0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                                              0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                                                       0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                                              0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                                                       0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                                             0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                                                  0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                                                           0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                                             0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                                                0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                                             0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                                                           0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                                                       0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe[1780] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                                                       0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                                                   0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                                     0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                                                   0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                                                   0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                                      0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                                               0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                                      0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                                               0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                                     0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                                          0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                                                   0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                                     0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                                        0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                                     0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                                                   0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                                               0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe[1896] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                                               0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                                                           0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                                             0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                                                           0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                                                           0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                                              0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                                                       0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                                              0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                                                       0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                                             0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                                                  0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                                                           0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                                             0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                                                0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                                             0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                                                           0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                                                       0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe[2132] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                                                       0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetModuleFileNameExW + 17                                                                                               0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!EnumProcessModules + 17                                                                                                 0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 17                                                                                               0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 42                                                                                               0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!EnumDeviceDrivers + 17                                                                                                  0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetDeviceDriverBaseNameA + 17                                                                                           0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!QueryWorkingSetEx + 17                                                                                                  0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetDeviceDriverBaseNameW + 17                                                                                           0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetModuleBaseNameW + 17                                                                                                 0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!EnumProcesses + 17                                                                                                      0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetProcessMemoryInfo + 17                                                                                               0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetPerformanceInfo + 17                                                                                                 0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!QueryWorkingSet + 17                                                                                                    0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetModuleBaseNameA + 17                                                                                                 0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetModuleFileNameExA + 17                                                                                               0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetProcessImageFileNameW + 20                                                                                           0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp[2228] C:\Windows\syswow64\Psapi.dll!GetProcessImageFileNameW + 31                                                                                           0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                               0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                 0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                               0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                               0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                  0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                           0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                  0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                           0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                 0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                      0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                               0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                 0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                    0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                 0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                               0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                           0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp[2324] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                           0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                      0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                        0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                      0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                      0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                         0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                  0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                         0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                  0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                        0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                             0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                      0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                        0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                           0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                        0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                      0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                  0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                  0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                                  0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                    0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                                  0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                                  0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\KERNEL32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                     0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                              0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                     0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                              0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                    0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                         0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                                  0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                    0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                       0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                    0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                                  0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                              0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe[3384] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                              0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                                                     0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                                       0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                                                     0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                                                     0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                                        0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                                                 0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                                        0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                                                 0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                                       0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                                            0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                                                     0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                                       0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                                          0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                                       0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                                                     0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                                                 0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe[3572] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                                                 0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                                               0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                                 0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                                               0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                                               0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                                  0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                                           0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                                  0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                                           0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                                 0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                                      0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                                               0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                                 0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                                    0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                                 0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                                               0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                                           0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4200] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                                           0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                                                      0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                                        0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                                                      0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                                                      0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                                         0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                                                  0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                                         0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                                                  0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                                        0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                                             0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                                                      0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                                        0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                                           0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                                        0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                                                      0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                                                  0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[4296] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                                                  0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                                               0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                                                 0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                                               0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                                               0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                                  0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                                           0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                                  0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                                           0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                                                 0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                                      0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                                               0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                                                 0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                                    0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                                                 0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                                               0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                                           0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe[4568] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                                           0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                             0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                               0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                             0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                             0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\kernel32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                         0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                         0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                               0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                    0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                             0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                               0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                  0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                               0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                             0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                         0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\kernel32.dll
.text    C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp[5776] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                         0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\kernel32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                             0000000075fd1401 2 bytes JMP 7601b1ef C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                               0000000075fd1419 2 bytes JMP 7601b31a C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                             0000000075fd1431 2 bytes JMP 76098f09 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                             0000000075fd144a 2 bytes CALL 75ff4885 C:\Windows\syswow64\KERNEL32.dll
.text    ...                                                                                                                                                                                                                                                 * 9
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                                0000000075fd14dd 2 bytes JMP 76098802 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                         0000000075fd14f5 2 bytes JMP 760989d8 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                                0000000075fd150d 2 bytes JMP 760986f8 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                         0000000075fd1525 2 bytes JMP 76098ac2 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                               0000000075fd153d 2 bytes JMP 7600fc78 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                    0000000075fd1555 2 bytes JMP 760168bf C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                             0000000075fd156d 2 bytes JMP 76098fc1 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                               0000000075fd1585 2 bytes JMP 76098b22 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                                  0000000075fd159d 2 bytes JMP 760986bc C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                               0000000075fd15b5 2 bytes JMP 7600fd11 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                             0000000075fd15cd 2 bytes JMP 7601b2b0 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                         0000000075fd16b2 2 bytes JMP 76098e84 C:\Windows\syswow64\KERNEL32.dll
.text    C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe[1164] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                         0000000075fd16bd 2 bytes JMP 76098651 C:\Windows\syswow64\KERNEL32.dll
---- Processes - GMER 2.1 ----

Process  C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp (*** suspicious ***) @ C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp [2228](2015-05-06 23:10:48)                  0000000001130000
Process  C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp (*** suspicious ***) @ C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp [2324](2015-05-10 01:18:39)                  0000000000850000
Process  C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp (*** suspicious ***) @ C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp [5776] (install/ )(2015-05-06 22:55:29)  0000000000400000
Library  C:\Users\Anwender\AppData\Local\Temp\nsg1D42.tmp\System.dll (*** suspicious ***) @ C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp [5776](2015-07-07 12:17:52)                                            0000000010000000
Library  C:\Users\Anwender\AppData\Local\Temp\nsg1D42.tmp\IpConfig.dll (*** suspicious ***) @ C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp [5776](2015-07-07 12:17:52)                                          0000000002930000

---- EOF - GMER 2.1 ----
__________________
 

Themen zu Windows7 unerwünschte Programme SlimCleanerPlus
administrator, adware, autorun, branding, browser, computer, defender, downloader, explorer, failed, flash player, geforce, helper, home, iexplore.exe, onedrive, registry, rundll, scan, security, services.exe, slimcleaner plus, super, svchost.exe, system, temp, teredo, vista, windows, winlogon.exe, ytdownloader


« Avast erkennt Malware Prozess:prgramme32/svchost.exe | Windows 8: Browser sehr langsam, Probleme mit dem wlan »


Ähnliche Themen: Windows7 unerwünschte Programme SlimCleanerPlus


  1. Firefox: unerwünschte Werbebanner überall,öffnet selbstständig neue Tabs z.B.zu ReimageRepair Windows7
    Plagegeister aller Art und deren Bekämpfung - 18.10.2015 (26)
  2. 9 Viren bzw. unerwünschte Programme wurden gefunden
    Log-Analyse und Auswertung - 08.09.2015 (23)
  3. Malwarebytes findet potenziell unerwünschte Programme
    Plagegeister aller Art und deren Bekämpfung - 12.08.2015 (31)
  4. Windows 7: Malware Gefunden und unerwünschte Programme
    Log-Analyse und Auswertung - 28.07.2015 (10)
  5. Ungültiges Bild beim öffnen sämtlicher Programme-Windows7
    Log-Analyse und Auswertung - 16.03.2015 (39)
  6. 11 Viren bzw. unerwünschte Programme wurden gefunden !
    Log-Analyse und Auswertung - 28.12.2014 (21)
  7. Windows7, Neuinstallation, unerwünschte Programme nicht löschbar
    Log-Analyse und Auswertung - 19.08.2014 (46)
  8. Windows 7 Pro: Unerwünschte Programme in der Taskleiste
    Log-Analyse und Auswertung - 08.08.2014 (5)
  9. unerwünschte Programme / Adware? in der Taskleiste
    Log-Analyse und Auswertung - 20.06.2014 (1)
  10. Windows7: unerwünschte Werbung; Absturz des System.
    Log-Analyse und Auswertung - 17.03.2014 (8)
  11. Windows7 64bit - Seriöse Programme laden Spam herunter?
    Log-Analyse und Auswertung - 01.11.2013 (4)
  12. Verdacht auf unerwünschte Programme
    Plagegeister aller Art und deren Bekämpfung - 14.07.2013 (53)
  13. Avira meldet 2 unerwünschte Programme
    Plagegeister aller Art und deren Bekämpfung - 06.09.2012 (3)
  14. Antivir meldet 10 Viren oder unerwünschte Programme
    Log-Analyse und Auswertung - 30.01.2012 (25)
  15. Habe Viren, unerwünschte Programme und Banner :(
    Plagegeister aller Art und deren Bekämpfung - 14.07.2011 (7)
  16. AviraAntiVirPersonal hat 7 Viren oder unerwünschte Programme gefunden
    Antiviren-, Firewall- und andere Schutzprogramme - 30.09.2010 (10)
  17. Unerwünschte Weiterleitungen, Programme nicht ausführbar etc.
    Log-Analyse und Auswertung - 20.07.2009 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows7 unerwünschte Programme SlimCleanerPlus - Schritt 3 gmer Code: Alles auswählen Aufklappen ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net Rootkit scan 2015-07-07 15:31:54 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 WDC_WD3200BEKT-60V5T1 rev.12.01A12 298,09GB Running: Gmer-19357.exe; - Windows7 unerwünschte Programme SlimCleanerPlus...
Archiv
Du betrachtest: Windows7 unerwünschte Programme SlimCleanerPlus auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132