MS Antivirus och Antivir64

28 augusti, 2008

Hur får jag bort dessa "antivirusprogram" från datorn...??

28 augusti, 2008

Vi kan se om HijackThis visar något till att börja med:

http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe

Installera, starta och välj "Do a system scan and save a logfile", kopiera loggen som kommer upp (inget annat).

I ditt svar bifogar du HijackThis-loggen på detta sätt:

Tryck på LOG-knappen i Besvara-fönstret

Klistra in loggen

Tryck igen på LOG-knappen

28 augusti, 2008

[log]Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 13:53:02, on 2008-08-28

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16705)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program\Network Associates\Common Framework\FrameworkService.exe

C:\Program\Network Associates\VirusScan\Mcshield.exe

C:\Program\Network Associates\VirusScan\VsTskMgr.exe

C:\Program\Delade filer\Microsoft Shared\VS7Debug\mdm.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\Program\Network Associates\Common Framework\UpdaterUI.exe

C:\Program\QuickTime\qttask.exe

C:\WINDOWS\AGRSMMSG.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\Program\Maxtor\OneTouch\Utils\OneTouch.exe

C:\Program\Java\jre1.6.0_07\bin\jusched.exe

C:\Program\HP\hpcoretech\hpcmpmgr.exe

C:\Program\HP\HP Software Update\HPWuSchd2.exe

C:\Program\Network Associates\VirusScan\SHSTAT.EXE

C:\Program\TomTom HOME 2\HOMERunner.exe

C:\Program\Winamp\winampa.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program\Windows Live\Messenger\MsnMsgr.Exe

C:\Program\MS Antivirus\MSA.exe

C:\Program\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe

C:\Program\HP\Digital Imaging\bin\hpqgalry.exe

C:\Program\Huawei technologies\Mobile Connect\Mobile Connect.exe

C:\Program\Microsoft Office\OFFICE11\OUTLOOK.EXE

C:\Program\Windows Live\Messenger\usnsvc.exe

C:\WINDOWS\system32\rundll32.exe

C:\Program\Internet Explorer\iexplore.exe

c:\program\winamp toolbar\WinampTbServer.exe

C:\Program\Delade filer\Microsoft Shared\Windows Live\WLLoginProxy.exe

C:\Program\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aftonbladet.se/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar

R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program\Winamp Toolbar\winamptb.dll

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program\Winamp Toolbar\winamptb.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program\Delade filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program\Winamp Toolbar\winamptb.dll

O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey

O4 - HKLM\..\Run: [synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [MaxtorOneTouch] C:\Program\Maxtor\OneTouch\Utils\OneTouch.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [shStatEXE] "C:\Program\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE

O4 - HKLM\..\Run: [MsgCenterExe] "C:\Program\Delade filer\Real\Update_OB\RealOneMessageCenter.exe" -osboot

O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program\TomTom HOME 2\HOMERunner.exe" -s

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [WinampAgent] C:\Program\Winamp\winampa.exe

O4 - HKLM\..\Run: [Antivirus] C:\Program\MS Antivirus\MSA.exe

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program\Windows Live\Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [updateMgr] "C:\Program\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1

O4 - HKCU\..\Run: [A00F98BF1.exe] C:\DOCUME~1\ewae\LOKALA~1\Temp\_A00F98BF1.exe

O4 - HKCU\..\Run: [Antivirus] C:\Program\MS Antivirus\MSA.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOKAL TJÄNST')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O4 - Startup: Antivir64.lnk = C:\Program\Antivir64\Antivir64.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program\HP\Digital Imaging\bin\hpqtra08.exe

O4 - Global Startup: HP Image Zone Snabbstarta.lnk = C:\Program\HP\Digital Imaging\bin\hpqthb08.exe

O4 - Global Startup: Tjänsthanteraren.lnk = C:\Program\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe

O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html

O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:\Program\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1191007966072

O16 - DPF: {6BD88D94-03D2-4ABF-99A3-78E9C87DFCA5} (aComp Class) - http://212.247.2.21/agresso/api/com/axmlcomp.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1191007942708

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = local

O17 - HKLM\Software\..\Telephony: DomainName = local

O17 - HKLM\System\CCS\Services\Tcpip\..\{8E0D5333-A54A-4B6A-BBCB-BB950670C322}: NameServer = 10.0.0.1 10.0.0.2

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = local

O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = local

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program\DELADE~1\Skype\SKYPE4~1.DLL

O20 - Winlogon Notify: __c004D628 - C:\WINDOWS\system32\__c004D628.dat (file missing)

O20 - Winlogon Notify: __c005435E - C:\WINDOWS\system32\__c005435E.dat

O20 - Winlogon Notify: __c007A4F2 - C:\WINDOWS\system32\__c007A4F2.dat (file missing)

O20 - Winlogon Notify: __c0090756 - C:\WINDOWS\system32\__c0090756.dat (file missing)

O20 - Winlogon Notify: __c00C9E1A - C:\WINDOWS\system32\__c00C9E1A.dat (file missing)

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program\Delade filer\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program\Network Associates\Common Framework\FrameworkService.exe

O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program\Network Associates\VirusScan\Mcshield.exe

O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program\Network Associates\VirusScan\VsTskMgr.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

--

End of file - 9651 bytes

[/log]

28 augusti, 2008

Ladda ner SDFix till Skrivbordet:

http://downloads.andymanchesta.com/RemovalTools/SDFix.exe

Dubbelklicka på SDFix.exe och en ny mapp skapas, C:\SDFix.

Starta om datorn i felsäkert läge (tryck F8 upprepade gånger under uppstarten och välj felsäkert läge i menyn).

Öppna den nya mappen C:\SDFix och dubbelklicka på RunThis.bat för att starta programmet.

Tryck Y för att fortsätta.

Det arbetar ett tag och när det är klart så kommer det upp en fråga om du vill starta om datorn.

Tryck på godtycklig tangent för att omstarten ska påbörjas.

Datorn kommer att ta lång tid på sig under uppstarten eftersom programmet kommer att gå igång och fixa till en massa.

När det är klart visas Finished.

Tryck på valfri tangent för att avsluta programmet.

Öppna mappen SDFix och öppna filen Report.txt i Anteckningar.

Klistra in innehållet i filen i ditt svar här.

28 augusti, 2008

Det händer inget när jag dubbelklickar på RunThis.bat o när jag sen skriver in Y (sist i texten i den svarta rutan?)

Vad ska jag då göra?

28 augusti, 2008

Hmm, försök med det här i så fall.

Ladda ner Malwarebytes Anti-Malware från en av dessa länkar:

http://www.malwaresupport.com/mbam/program/mbam-setup.exe

http://www.brothersoft.com/download-malwarebytes.-anti-malware-71406.html

Dubbelklicka på mbam-setup.exe för att installera programmet.

[log]Bocka för:

Update Malwarebytes' Anti-Malware

Launch Malwarebytes' Anti-Malware

Tryck på Finish

Om det finns någon uppdatering så kommer den att laddas ner och installeras.

När programmet startar så välj Perform Quick Scan och tryck på Scan.

Skanningen tar ett tag.

När den är klar så tryck på OK och sedan Show Results.

Bocka för allt och tryck sedan Remove Selected.

När borttagningen är klar så öppnar Anteckningar med en logg.

Eventuellt så kommer det upp en begäran om att starta om datorn (Restart). I så fall gör det.

Om programmet inte kommer igång efter omstarten så starta det.

Om loggen inte kommer upp själv i Anteckningar så hittar du loggen på Logs-fliken i MBAM.

Kopiera loggen och klistra in den i ditt sva.[/log]

28 augusti, 2008

Men MS Antivirus Security Center försvinner inte ändå..!!

Det andra har jag fått bort, men inte detta program. Det ploppar upp hela tiden, mycket enerverande..

28 augusti, 2008

Jag förstår att det är enerverande, men försök vara lugn ändå.

Hittade MBAM något?

Ladda ner Gmer till Skrivbordet från en av dessa sidor:

http://www.gmer.net/

http://www.majorgeeks.com/GMER_d5198.html

Packa upp filen till Skrivbordet.

Dubbelklicka på programmet gmer.exe för att starta det.

Välj fliken rootkit, kontrollera att allt är förbockat till höger utom Show All. Tryck på Scan.

Tryck på Copy och klistra sedan in resultatet i ditt svar.

28 augusti, 2008

[log]GMER 1.0.14.14536 - http://www.gmer.net

Rootkit scan 2008-08-28 19:45:28

Windows 5.1.2600 Service Pack 3

System - GMER 1.0.14

SSDT 8251D109 ZwCreateThread

Kernel code sections - GMER 1.0.14

? xdumamv.sys Det går inte att hitta filen. !

User code sections - GMER 1.0.14

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] wininet.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] wininet.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Network Associates\Common Framework\FrameworkService.exe[96] wininet.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\NETWOR~1\COMMON~1\naPrdMgr.exe[376] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[512] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\services.exe[964] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\lsass.exe[976] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1132] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\system32\svchost.exe[1196] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1236] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\Explorer.EXE[1272] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1284] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\WINDOWS\System32\svchost.exe[1352] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!ReadFile 7C801812 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!VirtualProtectEx 7C801A61 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!VirtualProtect 7C801AD4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!LoadLibraryA 7C801D7B 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!GetStartupInfoA 7C801EF2 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!GetProcAddress 7C80AE30 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!WriteFile 7C810E17 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!CreatePipe 7C81D827 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!PeekNamedPipe 7C860817 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] kernel32.dll!WinExec 7C8623AD 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] ADVAPI32.dll!RegOpenKeyA 77DCEFB8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] USER32.dll!DialogBoxParamW 7E3747AB 5 Bytes JMP 4483F301 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

.text C:\Program\Internet Explorer\iexplore.exe[1788] USER32.dll!DialogBoxIndirectParamW 7E382072 5 Bytes JMP 449D1667 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

.text C:\Program\Internet Explorer\iexplore.exe[1788] USER32.dll!MessageBoxIndirectA 7E38A082 5 Bytes JMP 449D15E8 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

.text C:\Program\Internet Explorer\iexplore.exe[1788] USER32.dll!DialogBoxParamA 7E38B144 5 Bytes JMP 449D162C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

.text C:\Program\Internet Explorer\iexplore.exe[1788] USER32.dll!MessageBoxExW 7E3A0838 5 Bytes JMP 449D1574 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

.text C:\Program\Internet Explorer\iexplore.exe[1788] USER32.dll!MessageBoxExA 7E3A085C 5 Bytes JMP 449D15AE C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

.text C:\Program\Internet Explorer\iexplore.exe[1788] USER32.dll!DialogBoxIndirectParamA 7E3A6D7D 5 Bytes JMP 449D16A2 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

.text C:\Program\Internet Explorer\iexplore.exe[1788] USER32.dll!MessageBoxIndirectW 7E3B64D5 5 Bytes JMP 448616B6 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

.text C:\Program\Internet Explorer\iexplore.exe[1788] WS2_32.dll!select 71AA30A8 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] WS2_32.dll!socket 71AA4211 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] WS2_32.dll!bind 71AA4480 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] WS2_32.dll!send 71AA4C27 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] WS2_32.dll!recv 71AA676F 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] WININET.dll!InternetReadFile 4455ABB4 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] WININET.dll!InternetOpenA 4455C865 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Internet Explorer\iexplore.exe[1788] WININET.dll!InternetOpenUrlA 44560BCA 5 Bytes CALL 37001160 C:\WINDOWS\system32\EntApi.dll (EntAPI/Network Associates, Inc)

.text C:\Program\Windows Live\Messenger\MsnMsgr.Exe[1888] kernel32.dll!SetUnhandledExceptionFilter 7C8449FD 5 Bytes JMP 0056DBBD C:\Program\Windows Live\Messenger\MsnMsgr.Exe (Windows Live Messenger/Microsoft Corporation)

Devices - GMER 1.0.14

AttachedDevice \FileSystem\Ntfs \Ntfs naiavf5x.sys (Anti-Virus File System Filter Driver/Network Associates, Inc.)

AttachedDevice \Driver\Tcpip \Device\Ip mvstdi5x.sys (Anti-Virus Mini-Firewall Driver/Network Associates, Inc.)

AttachedDevice \Driver\Tcpip \Device\Tcp mvstdi5x.sys (Anti-Virus Mini-Firewall Driver/Network Associates, Inc.)

AttachedDevice \Driver\Tcpip \Device\Udp mvstdi5x.sys (Anti-Virus Mini-Firewall Driver/Network Associates, Inc.)

AttachedDevice \Driver\Tcpip \Device\RawIp mvstdi5x.sys (Anti-Virus Mini-Firewall Driver/Network Associates, Inc.)

Files - GMER 1.0.14

File C:\Documents and Settings\ewae\Lokala inställningar\Temporary Internet Files\Content.IE5\YX6XN86F\w2[1] 0 bytes

File C:\Documents and Settings\ewae\Lokala inställningar\Temporary Internet Files\Content.IE5\YX6XN86F\133[1] 0 bytes

EOF - GMER 1.0.14

[/log]

Lagt till LOG-taggar

När du har klistrat in en logg så var vänlig och markera loggen och tryck sedan på LOG-knappen som finns på samma rad som :thumbsdown: :thumbsup: i inläggsfönstret.

Cecilia - Moderator för Virus, skadliga program & botemedel

[inlägget ändrat 2008-08-28 19:54:24 av Cecilia]

28 augusti, 2008

Inget konstigt där i alla fall vad jag kunde se.

Ladda ner ComboFix till Skrivbordet:

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

[log]Dra ur internetanslutningen och stäng av alla program du ser inklusive antivirusprogram, antispionprogram och brandvägg, alternativt starta om datorn i felsäkert läge.

Kör ComboFix och följ anvisningarna som visas.

VIKTIGT! Klicka inte på ComboFix-fönstret med musen när den körs annars kan den hänga upp sig.

När den är färdig så ska en logg komma upp, bifoga den till ditt svar. Kontrollera att antivirusprogram och brandvägg är igång innan du ansluter till internet.

Om du får problem med att komma ut på internet:

Kontrollpanelen - Nätverksanslutningar

högerklicka på din internetanslutning och välj Reparera och/eller starta om datorn.[/log]

Varning! ComboFix förhindrar automatisk körning av CD, disketter och USB-enheter för att göra det lättare att rensa datorn och skydda datorn mot infektioner i framtiden. Det kan bli problem t ex om datorn har internet via ett USB-modem eller USB-nätverkskort. Säg då till i stället för att köra ComboFix.

28 augusti, 2008

Använde inte ditt senaste tips. Startade om datorn och sen har MS Antivirus inte ploppat upp något mer.

Tack för hjälpen.

28 augusti, 2008

Det var ju bra. Kan det ha varit MBAM som tog bort något?

Verkar allt bra med datorn nu?

28 augusti, 2008

Ja, det tror jag absolut att det var. Jag gjorde en stor scanning också senare o efter att jag sedan startade om datorn, så ploppade inget trist program upp. Halleluja!

28 augusti, 2008

Här kan du läsa mina vanliga råd för en säkrare dator, men det är så klart viktigt att man använder sitt förnuft också.

http://ceblstockholm.googlepages.com/home

30 augusti, 2008

Hej igen,

Idag när jag startade upp datorn, så ploppade MS Antivirus upp igen. Finns det inget enkel sätt att få bort eländet? Jag vill inte gå in på systemnivån, kan inte sånt..

30 augusti, 2008

Vad menar du med att gå in på systemnivån?

30 augusti, 2008

Jo, jag menar när jag ska gå in på "felsäkert läge" osv.

Finns det nåt enkelt sätt att få bort det?

30 augusti, 2008

Finns det nåt enkelt sätt att få bort det?

Hmm, installera om Windows?

Det är ju inget konstigt eller farligt med felsäkert läge.

MS Antivirus och Antivir64

Rekommendera Poster

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Ebba48

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Arkiverat

Vem är online 0 Medlemmar, 0 anonym, 7 gäster (Visa hela listan)

Populära medlemmar

Publika meddelanden

Senaste som Tittar

Senaste inlägg

Forum

Aktivitet

pcforalla.se