Jump to content


Photo

Tried of restoring & recovery system


  • This topic is locked This topic is locked
105 replies to this topic

#101 kym

kym

    Member

  • Full Member
  • Pip
  • 79 posts

Posted 29 December 2008 - 10:59 PM

Rocket Grannie!!! I am back. First of all I do not see my post here anymore. So didnt know what to do! Yr last response to me was to try and f10 or F8 I believe but that took me into tha system settings. There that is not right because I am looking for your instructions and cant find them posted here along with the topics we started communicating. Can you please get back with me on this!!! Will try more scans in the meantime.

#102 Budfred

Budfred

    Malware Hound

  • Administrators
  • PipPipPipPipPip
  • 21,530 posts

Posted 29 December 2008 - 11:14 PM

Reopened at request of topic owner.
Budfred

Helpful link: SpywareBlaster...

MS MVP 2006 and ASAP Member since 2004

Please read the Instructions for posting requested logs and the article "So how did I get infected in the first place?"

#103 Budfred

Budfred

    Malware Hound

  • Administrators
  • PipPipPipPipPip
  • 21,530 posts

Posted 29 December 2008 - 11:16 PM

Your topic was closed because you hadn't responded... I have reopened it and attached this topic as well...
Budfred

Helpful link: SpywareBlaster...

MS MVP 2006 and ASAP Member since 2004

Please read the Instructions for posting requested logs and the article "So how did I get infected in the first place?"

#104 kym

kym

    Member

  • Full Member
  • Pip
  • 79 posts

Posted 29 December 2008 - 11:24 PM

Thank you so much!! I am searching the the forum to find solutions to y after all this computer is still not in the normal state. Blue hour glass has taken over system! I downloaded F-secure internet and several programs I have blocked out are bugging me to death. SEARCHPROTCOLHOST.EXE IS BLOCKED NOW BUT USING MANY RESOURCES. i WISH SOMEONE COULD TELL HOW TO CONFIGURE THIS . Noticed the other day that I had at least 15-20 ports open and dont know how to close them. Also the address for each one of them is 0.0.0.0.0. (what is this) There is activity once I get off the computer my bellsouth tower light is still flashing once I shut down computer. Also went to evetn viewer and look at adminst, and other events : SECURITY LOG: a logon was attempted using explicit credentials, (2) A special logon with special privileges was assigned to a new logon? Can anyone explain to me if my internet host is infected or not? I dont know where to go from here but its most definetly in the system, or in the restore system
GMER 1.0.14.14536 - http://www.gmer.net
Rootkit scan 2008-12-29 21:27:06
Windows 6.0.6000


---- System - GMER 1.0.14 ----

SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwCreateProcess [0x8C325C26]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwCreateProcessEx [0x8C325C40]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwCreateThread [0x8C324DE4]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwLoadDriver [0x8C32510C]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwMapViewOfSection [0x8C324B30]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwOpenSection [0x8C32553E]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwRenameKey [0x8C3267DC]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwSetSystemInformation [0x8C32538E]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwSuspendProcess [0x8C3249B6]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwSuspendThread [0x8C324E18]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwSystemDebugControl [0x8C324F92]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwTerminateProcess [0x8C324916]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwTerminateThread [0x8C324A6C]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwWriteVirtualMemory [0x8C324EDC]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwCreateThreadEx [0x8C324DFE]
SSDT \??\C:\Program Files\F-Secure Internet Security\HIPS\drivers\fshs.sys ZwCreateUserProcess [0x8C325C5A]

---- Kernel code sections - GMER 1.0.14 ----

.text ntkrnlpa.exe!ZwCallbackReturn + 7E0 82080CEC 12 Bytes [ B6, 49, 32, 8C, 18, 4E, 32, ... ]
.text ntdll.dll!NtCreateFile + 3 7729F417 2 Bytes [ DB, FA ]

---- User code sections - GMER 1.0.14 ----

.text C:\Program Files\Internet Explorer\iexplore.exe[1476] USER32.dll!DialogBoxIndirectParamW 76D114EA 5 Bytes JMP 7082179F C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] USER32.dll!MessageBoxExA 76D2570D 5 Bytes JMP 708216E6 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] USER32.dll!DialogBoxParamA 76D265BF 5 Bytes JMP 70821764 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] USER32.dll!MessageBoxIndirectW 76D2F1B3 5 Bytes JMP 706B16B6 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] USER32.dll!DialogBoxParamW 76D3129F 5 Bytes JMP 7068F301 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] USER32.dll!DialogBoxIndirectParamA 76D529C9 5 Bytes JMP 708217DA C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] USER32.dll!MessageBoxIndirectA 76D5FACF 5 Bytes JMP 70821720 C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] USER32.dll!MessageBoxExW 76D5FBC9 5 Bytes JMP 708216AC C:\Windows\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] SHELL32.dll!DAD_ShowDragImage + CC 761BE958 4 Bytes [ 01, 0C, 5D, 71 ]
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] SHELL32.dll!DAD_ShowDragImage + D4 761BE960 8 Bytes [ 0F, 0B, 5D, 71, 8F, 32, 5C, ... ]
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] SHELL32.dll!ILFree + 980 761BF430 4 Bytes [ 01, 0C, 5D, 71 ]
.text C:\Program Files\Internet Explorer\iexplore.exe[1476] SHELL32.dll!ILFree + 988 761BF438 4 Bytes [ 0F, 0B, 5D, 71 ]
.text C:\Users\Kim's Family\Documents\gmer[1]\gmer.exe[4892] ntdll.dll!NtCreateFile + 3 7729F417 2 Bytes [ DB, FA ]

---- User IAT/EAT - GMER 1.0.14 ----

IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [715BD4D7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [715BD03C] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CopyFileW] [715BB641] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [715BD1C1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!CreateFileW] [715BBCBB] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!SearchPathW] [715BF1D3] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!DeleteFileW] [715BC2A1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [715BD4D7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CopyFileW] [715BB641] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!MoveFileW] [715BDDF0] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!DeleteFileW] [715BC2A1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SetCurrentDirectoryW] [715BF43D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindClose] [715C0D38] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindNextFileW] [715BFBC9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!FindFirstFileW] [715C0291] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] [715BD03C] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!SearchPathW] [715BF1D3] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!CreateFileW] [715BBCBB] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!WritePrivateProfileStringW] [715BB0B4] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [715BD1C1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetPrivateProfileStringW] [715BA910] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryInfoKeyW] [715CDB43] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegEnumValueW] [715CE4AD] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegOpenKeyExW] [715CCBD1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegQueryValueExW] [715CD7A7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegDeleteKeyW] [715CCED9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCreateKeyExW] [715CC659] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\USER32.dll [ADVAPI32.dll!RegCloseKey] [715CCD3D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [715BD1C1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!ReplaceFileW] [715BE0F1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!WritePrivateProfileStringW] [715BB0B4] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringW] [715BA910] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetPrivateProfileStringA] [715BA7B9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!DeleteFileW] [715BC2A1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [715BD4D7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesW] [715B8CF2] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileW] [715BBCBB] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileW] [715C0291] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileW] [715BFBC9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathW] [715BF1D3] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesW] [715B8A99] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SetFileAttributesA] [715B8BC4] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!CreateFileA] [715BBB72] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindFirstFileA] [715BFF2E] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindNextFileA] [715BFB56] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!FindClose] [715C0D38] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!SearchPathA] [715BEF48] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetFileAttributesA] [715B896E] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [715BD03C] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpW] [715BCF05] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!WinHelpA] [715BCDCE] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCloseKey] [715CCD3D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExA] [715CC4D1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyA] [715CCD90] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyA] [715CD947] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExA] [715CCA59] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegCreateKeyExW] [715CC659] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegOpenKeyExW] [715CCBD1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExW] [715CE19D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueW] [715CD46B] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExW] [715CD7A7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegDeleteKeyW] [715CCED9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryInfoKeyW] [715CDB43] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueW] [715CE4AD] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyW] [715CDEA9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyExA] [715CE015] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumValueA] [715CE325] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegEnumKeyA] [715CDD3F] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHLWAPI.dll [ADVAPI32.dll!RegQueryValueExA] [715CD607] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionW] [715BA400] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindNextFileW] [715BFBC9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!ReplaceFileW] [715BE0F1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileSectionNamesW] [715BA682] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileSectionW] [715BAE32] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!WritePrivateProfileStringW] [715BB0B4] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateHardLinkW] [715BBFC3] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CopyFileW] [715BB641] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetBinaryTypeW] [715B969E] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] [715BD4D7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileW] [715BDDF0] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindFirstFileW] [715C0291] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!FindClose] [715C0D38] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameA] [715B9300] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesA] [715B896E] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SearchPathW] [715BF1D3] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileIntW] [715BA178] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetPrivateProfileStringW] [715BA910] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!RemoveDirectoryW] [715BEA70] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateDirectoryW] [715BE499] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!DeleteFileW] [715BC2A1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetFileAttributesW] [715B8CF2] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesW] [715B8A99] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!MoveFileExW] [715BDE15] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetShortPathNameW] [715B943F] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [715BD1C1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!CreateFileW] [715BBCBB] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetFileAttributesExW] [715B8F5F] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [715BD03C] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!GetLongPathNameW] [715B91CF] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!SetCurrentDirectoryW] [715BF43D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [USER32.dll!LoadImageW] [715BC52B] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [USER32.dll!WinHelpW] [715BCF05] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [USER32.dll!PrivateExtractIconsW] [715BCA20] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegOpenKeyExW] [715CCBD1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegCreateKeyExW] [715CC659] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegEnumKeyW] [715CDEA9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegEnumValueW] [715CE4AD] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegDeleteKeyW] [715CCED9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegQueryInfoKeyW] [715CDB43] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegQueryInfoKeyA] [715CD947] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegEnumKeyExW] [715CE19D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegSetValueW] [715CD173] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegQueryValueExW] [715CD7A7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegQueryValueW] [715CD46B] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegOpenKeyW] [715CC91D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegCreateKeyW] [715CC391] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegQueryValueExA] [715CD607] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegOpenKeyExA] [715CCA59] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ADVAPI32.dll!RegCloseKey] [715CCD3D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\SHELL32.dll [ntdll.dll!NtQueryDirectoryFile] [715C9194] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindClose] [715C0D38] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!FindFirstFileW] [715C0291] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [715BD4D7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!SearchPathW] [715BF1D3] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!DeleteFileW] [715BC2A1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetShortPathNameW] [715B943F] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesExW] [715B8F5F] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!CreateFileW] [715BBCBB] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] [715BD1C1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!GetFileAttributesW] [715B8A99] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] [715BD03C] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegSetValueW] [715CD173] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegQueryValueA] [715CD2C3] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegEnumKeyExW] [715CE19D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegEnumValueW] [715CE4AD] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegEnumKeyA] [715CDD3F] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegDeleteKeyA] [715CCD90] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegQueryInfoKeyW] [715CDB43] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegQueryInfoKeyA] [715CD947] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegQueryValueW] [715CD46B] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegEnumKeyW] [715CDEA9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegCloseKey] [715CCD3D] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegQueryValueExW] [715CD7A7] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegOpenKeyExW] [715CCBD1] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegDeleteKeyW] [715CCED9] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegCreateKeyExW] [715CC659] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegQueryValueExA] [715CD607] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\ole32.dll [ADVAPI32.dll!RegOpenKeyExA] [715CCA59] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueW] [715C5CE6] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHRegGetValueA] [715C5C88] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathUnExpandEnvStringsA] [715C4D7E] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteKeyA] [715C5098] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHDeleteValueW] [715C5188] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCreateFromUrlW] [715C408B] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueA] [715C5340] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueA] [715C6188] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHGetValueW] [715C539B] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!SHSetValueW] [715C61E3] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)
IAT C:\Program Files\Internet Explorer\iexplore.exe[1476] @ C:\Windows\system32\WININET.dll [SHLWAPI.dll!PathCombineW] [715C3FE4] C:\Windows\AppPatch\AcRedir.DLL (Windows Compatibility DLL/Microsoft Corporation)

---- EOF - GMER 1.0.14 ----


combo fix (it never works right)
ComboFix 08-12-13.03 - Kim's Family 2008-12-13 20:41:38.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1033.18.1918.1135 [GMT -8:00]
Running from: c:\users\Kim's Family\Desktop\ComboFix.exe
* Resident AV is active

.
/wow section - STAGE 9
The process cannot access the file because it is being used by another process.


((((((((((((((((((((((((( Files Created from 2008-11-14 to 2008-12-14 )))))))))))))))))))))))))))))))
.

2008-12-13 20:31 . 2008-12-13 20:31 1,883 --a------ c:\windows\System32\responseBody.xml
2008-12-13 20:31 . 2008-12-13 20:31 1,487 --a------ c:\windows\System32\requestBody.xml
2008-12-13 20:31 . 2008-12-13 20:31 476 --a------ c:\windows\System32\request.gzip
2008-12-13 20:19 . 2008-12-13 20:19 <DIR> d-------- c:\users\Kim's Family\AppData\Roaming\FaxCtr
2008-12-13 20:06 . 2008-12-13 20:06 <DIR> d-------- c:\users\All Users\Avira
2008-12-13 20:06 . 2008-12-13 20:06 <DIR> d-------- c:\programdata\Avira
2008-12-13 20:06 . 2008-12-13 20:06 <DIR> d-------- c:\program files\Avira
2008-12-13 19:56 . 2008-12-13 19:56 <DIR> d-------- c:\users\Kim's Family\AppData\Roaming\Malwarebytes
2008-12-13 19:56 . 2008-12-13 19:56 <DIR> d-------- c:\users\All Users\Malwarebytes
2008-12-13 19:56 . 2008-12-13 19:56 <DIR> d-------- c:\programdata\Malwarebytes
2008-12-13 19:56 . 2008-12-03 19:52 38,496 --a------ c:\windows\System32\drivers\mbamswissarmy.sys
2008-12-13 19:56 . 2008-12-03 19:52 15,504 --a------ c:\windows\System32\drivers\mbam.sys
2008-12-13 15:35 . 2008-12-13 16:28 <DIR> d-------- c:\windows\System32\Adobe
2008-12-11 18:59 . 2008-12-13 19:51 <DIR> d--h----- C:\$AVG8.VAULT$
2008-12-10 20:46 . 2008-12-10 20:46 69,128 --a------ c:\windows\System32\drivers\avgwfpx.sys
2008-12-10 20:46 . 2008-12-10 20:46 10,520 --a------ c:\windows\System32\avgrsstx.dll
2008-12-10 20:45 . 2008-12-13 16:41 <DIR> d-------- c:\windows\System32\drivers\Avg
2008-12-10 20:45 . 2008-12-13 20:20 <DIR> d-------- c:\users\All Users\avg8
2008-12-10 20:45 . 2008-12-13 20:20 <DIR> d-------- c:\programdata\avg8
2008-12-10 20:45 . 2008-12-10 20:45 <DIR> d-------- c:\program files\AVG
2008-12-10 20:45 . 2008-12-10 20:45 97,928 --a------ c:\windows\System32\drivers\avgldx86.sys
2008-12-10 17:52 . 2008-12-10 17:52 <DIR> d-------- c:\program files\Java
2008-12-10 17:52 . 2008-12-10 17:52 410,984 --a------ c:\windows\System32\deploytk.dll
2008-12-10 17:50 . 2008-12-10 17:50 <DIR> d-------- c:\program files\Microsoft CAPICOM 2.1.0.2
2008-12-09 18:58 . 2008-12-09 18:58 361,984 --a------ c:\windows\System32\IPSECSVC.DLL
2008-12-09 18:58 . 2008-12-09 18:58 272,896 --a------ c:\windows\System32\polstore.dll
2008-12-09 18:58 . 2008-12-09 18:58 61,440 --a------ c:\windows\System32\winipsec.dll
2008-12-09 18:58 . 2008-12-09 18:58 28,672 --a------ c:\windows\System32\FwRemoteSvr.dll
2008-12-09 18:58 . 2007-01-03 19:20 1,732 --a------ c:\windows\System32\drivers\nvphy.bin
2008-12-09 18:56 . 2008-12-09 18:56 241,152 --a------ c:\windows\System32\PortableDeviceApi.dll
2008-12-09 18:56 . 2008-12-09 18:56 160,768 --a------ c:\windows\System32\PortableDeviceTypes.dll
2008-12-09 18:56 . 2008-12-09 18:56 95,232 --a------ c:\windows\System32\PortableDeviceClassExtension.dll
2008-12-09 18:55 . 2008-12-09 18:55 205,824 --a------ c:\windows\System32\msoeacct.dll
2008-12-09 18:55 . 2008-12-09 18:55 87,040 --a------ c:\windows\System32\msoert2.dll
2008-12-09 18:55 . 2008-12-09 18:55 39,424 --a------ c:\windows\System32\ACCTRES.dll
2008-12-09 18:54 . 2008-12-09 18:54 1,655,289 --a------ c:\windows\System32\wlan.tmf
2008-12-09 18:54 . 2008-12-09 18:54 714,240 --a------ c:\windows\System32\timedate.cpl
2008-12-09 18:54 . 2008-12-09 18:54 704,000 --a------ c:\windows\System32\PhotoScreensaver.scr
2008-12-09 18:54 . 2008-12-09 18:54 542,720 --a------ c:\windows\System32\sysmain.dll
2008-12-09 18:54 . 2008-12-09 18:54 502,784 --a------ c:\windows\System32\wlansvc.dll
2008-12-09 18:54 . 2008-12-09 18:54 297,984 --a------ c:\windows\System32\wlansec.dll
2008-12-09 18:54 . 2008-12-09 18:54 290,816 --a------ c:\windows\System32\wlanmsm.dll
2008-12-09 18:54 . 2008-12-09 18:54 258,232 --a------ c:\windows\System32\drivers\acpi.sys
2008-12-09 18:54 . 2008-12-09 18:54 67,584 --a------ c:\windows\System32\wlanhlp.dll
2008-12-09 18:54 . 2008-12-09 18:54 47,104 --a------ c:\windows\System32\wlanapi.dll
2008-12-09 18:54 . 2008-12-09 18:54 24,064 --a------ c:\windows\System32\wtsapi32.dll
2008-12-09 18:52 . 2008-12-09 18:52 194,560 --a------ c:\windows\System32\WebClnt.dll
2008-12-09 18:52 . 2008-12-09 18:52 110,080 --a------ c:\windows\System32\drivers\mrxdav.sys
2008-12-09 18:49 . 2008-12-09 18:49 1,244,672 --a------ c:\windows\System32\mcmde.dll
2008-12-09 18:49 . 2008-12-09 18:49 428,032 --a------ c:\windows\System32\EncDec.dll
2008-12-09 18:49 . 2008-12-09 18:49 292,352 --a------ c:\windows\System32\psisdecd.dll
2008-12-09 18:49 . 2008-12-09 18:49 217,088 --a------ c:\windows\System32\psisrndr.ax
2008-12-09 18:49 . 2008-12-09 18:49 177,152 --a------ c:\windows\System32\mpg2splt.ax
2008-12-09 18:49 . 2008-12-09 18:49 80,896 --a------ c:\windows\System32\MSNP.ax
2008-12-09 18:49 . 2008-12-09 18:49 68,608 --a------ c:\windows\System32\Mpeg2Data.ax
2008-12-09 18:49 . 2008-12-09 18:49 57,856 --a------ c:\windows\System32\MSDvbNP.ax
2008-12-09 18:48 . 2008-12-09 18:48 376,320 --a------ c:\windows\System32\winsrv.dll
2008-12-09 18:48 . 2008-12-09 18:48 49,664 --a------ c:\windows\System32\csrsrv.dll
2008-12-09 18:45 . 2008-12-09 18:45 297,472 --a------ c:\windows\System32\gdi32.dll
2008-12-09 18:44 . 2008-12-09 18:44 1,060,920 --a------ c:\windows\System32\drivers\ntfs.sys
2008-12-09 18:43 . 2008-12-09 18:43 211,456 --a------ c:\windows\System32\drivers\mrxsmb10.sys
2008-12-09 18:42 . 2008-12-09 18:42 4,247,552 --a------ c:\windows\System32\GameUXLegacyGDFs.dll
2008-12-09 18:42 . 2008-12-09 18:42 1,687,040 --a------ c:\windows\System32\gameux.dll
2008-12-09 18:42 . 2008-12-09 18:42 28,672 --a------ c:\windows\System32\Apphlpdm.dll
2008-12-09 18:41 . 2008-12-09 18:41 303,616 --a------ c:\windows\System32\wmpeffects.dll
2008-12-09 18:40 . 2008-12-09 18:40 2,027,520 --a------ c:\windows\System32\win32k.sys
2008-12-09 18:39 . 2008-12-09 18:39 1,194,496 --a------ c:\windows\System32\msxml3.dll
2008-12-09 18:39 . 2008-12-09 18:39 2,048 --a------ c:\windows\System32\msxml3r.dll
2008-12-09 18:36 . 2008-12-09 18:36 2,048 --a------ c:\windows\System32\tzres.dll
2008-12-09 18:31 . 2008-12-09 18:31 211,000 --a------ c:\windows\System32\drivers\volsnap.sys
2008-12-09 18:31 . 2008-12-09 18:31 154,624 --a------ c:\windows\System32\drivers\nwifi.sys
2008-12-09 18:31 . 2008-12-09 18:31 109,624 --a------ c:\windows\System32\drivers\ataport.sys
2008-12-09 18:31 . 2008-12-09 18:31 45,112 --a------ c:\windows\System32\drivers\pciidex.sys
2008-12-09 18:31 . 2008-12-09 18:31 21,560 --a------ c:\windows\System32\drivers\atapi.sys
2008-12-09 18:31 . 2008-12-09 18:31 15,928 --a------ c:\windows\System32\drivers\pciide.sys
2008-12-09 18:30 . 2008-12-09 18:30 2,923,520 --a------ c:\windows\explorer.exe
2008-12-09 18:27 . 2008-12-09 18:27 803,328 --a------ c:\windows\System32\drivers\tcpip.sys
2008-12-09 18:27 . 2008-12-09 18:27 216,632 --a------ c:\windows\System32\drivers\netio.sys
2008-12-09 18:27 . 2008-12-09 18:27 167,424 --a------ c:\windows\System32\tcpipcfg.dll
2008-12-09 18:27 . 2008-12-09 18:27 24,064 --a------ c:\windows\System32\netcfg.exe
2008-12-09 18:27 . 2008-12-09 18:27 22,016 --a------ c:\windows\System32\netiougc.exe
2008-12-09 18:23 . 2008-12-09 18:23 1,585,664 --a------ c:\windows\System32\setupapi.dll
2008-12-09 18:20 . 2008-12-09 18:20 290,304 --a------ c:\windows\System32\drivers\srv.sys
2008-12-09 18:20 . 2008-12-09 18:20 223,232 --a------ c:\windows\System32\WMASF.DLL
2008-12-09 18:20 . 2008-12-09 18:20 9,728 --a------ c:\windows\System32\LAPRXY.DLL
2008-12-09 18:20 . 2008-12-09 18:20 2,048 --a------ c:\windows\System32\asferror.dll
2008-12-09 18:19 . 2008-12-09 18:19 2,605,568 --a------ c:\windows\System32\SLsvc.exe
2008-12-09 18:19 . 2008-12-09 18:19 712,192 --a------ c:\windows\System32\WindowsCodecs.dll
2008-12-09 18:19 . 2008-12-09 18:19 566,784 --a------ c:\windows\System32\SLCommDlg.dll
2008-12-09 18:19 . 2008-12-09 18:19 425,472 --a------ c:\windows\System32\PhotoMetadataHandler.dll
2008-12-09 18:19 . 2008-12-09 18:19 351,232 --a------ c:\windows\System32\SLUI.exe
2008-12-09 18:19 . 2008-12-09 18:19 347,136 --a------ c:\windows\System32\WindowsCodecsExt.dll
2008-12-09 18:19 . 2008-12-09 18:19 268,288 --a------ c:\windows

Edited by kym, 30 December 2008 - 12:23 AM.


#105 Rocket Grannie

Rocket Grannie

    SWI Australian Rebel

  • Administrators
  • PipPipPipPipPip
  • 7,941 posts

Posted 30 December 2008 - 01:46 AM

Hello kym

Please go to this post and do what screen317 asked you to do.
There is a link there, click on it.

http://www.spywarein...?...st&p=658347


Rocket Grannie
a114.gif




My help is free however if you wish to make a donation please see Here

#106 Rocket Grannie

Rocket Grannie

    SWI Australian Rebel

  • Administrators
  • PipPipPipPipPip
  • 7,941 posts

Posted 20 January 2009 - 09:59 PM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please tell the moderating team by replying here with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
a114.gif




My help is free however if you wish to make a donation please see Here




Member of UNITE
Support SpywareInfo Forum - click the button