my pc is wired I don't have any other computers .I am stumped on the router answer after searching long and hard. I would say no. This is the description of the modem model.
http://www.arrisi.com/product_catalog/l ... asp?id=418 .
RkU Version: 3.8.388.590, Type LE (SR2)
==============================================
OS Name: Windows Vista
Version 6.0.6002 (Service Pack 2)
Number of processors #2
==============================================
>Drivers
==============================================
0x8D601000 C:\Windows\system32\DRIVERS\nvlddmkm.sys 7471104 bytes (NVIDIA Corporation, NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 175.30 )
0x82451000 C:\Windows\system32\ntkrnlpa.exe 3903488 bytes (Microsoft Corporation, NT Kernel & System)
0x82451000 PnpManager 3903488 bytes
0x82451000 RAW 3903488 bytes
0x82451000 WMIxWDM 3903488 bytes
0x94CD0000 Win32k 2109440 bytes
0x94CD0000 C:\Windows\System32\win32k.sys 2109440 bytes (Microsoft Corporation, Multi-User Win32 Driver)
0x8E04B000 C:\Windows\system32\drivers\RTKVHDA.sys 1765376 bytes (Realtek Semiconductor Corp., Realtek(r) High Definition Audio Function Driver)
0x83205000 C:\Windows\System32\Drivers\Ntfs.sys 1114112 bytes (Microsoft Corporation, NT File System Driver)
0x82A73000 C:\Windows\system32\drivers\ndis.sys 1093632 bytes (Microsoft Corporation, NDIS 6.0 wrapper driver)
0x8CC7A000 C:\Windows\system32\DRIVERS\HSX_DPV.sys 1060864 bytes (Conexant Systems, Inc., HSF_DP driver)
0x83007000 C:\Windows\System32\drivers\tcpip.sys 970752 bytes (Microsoft Corporation, TCP/IP Driver)
0x8046A000 C:\Windows\system32\CI.dll 917504 bytes (Microsoft Corporation, Code Integrity Module)
0x9FE5D000 C:\Windows\system32\drivers\peauth.sys 909312 bytes (Microsoft Corporation, Protected Environment Authentication and Authorization Export Driver)
0x8D209000 C:\Windows\system32\DRIVERS\HSX_CNXT.sys 741376 bytes (Conexant Systems, Inc., HSF_CNXT driver)
0x81808000 C:\Windows\system32\drivers\spsys.sys 720896 bytes (Microsoft Corporation, security processor)
0x8DD21000 C:\Windows\System32\drivers\dxgkrnl.sys 659456 bytes (Microsoft Corporation, DirectX Graphics Kernel)
0x8D2E9000 C:\Windows\system32\DRIVERS\HDAudBus.sys 577536 bytes (Microsoft Corporation, High Definition Audio Bus Driver)
0x8E512000 C:\Windows\system32\DRIVERS\vsdatant.sys 569344 bytes (Check Point Software Technologies LTD, ZoneAlarm Firewalling Driver)
0x8054A000 C:\Windows\system32\drivers\Wdf01000.sys 507904 bytes (Microsoft Corporation, WDF Dynamic)
0x82A02000 C:\Windows\System32\Drivers\ksecdd.sys 462848 bytes (Microsoft Corporation, Kernel Security Support Provider Interface)
0x818EC000 C:\Windows\system32\drivers\HTTP.sys 446464 bytes (Microsoft Corporation, HTTP Protocol Stack)
0x9FE04000 C:\Windows\System32\DRIVERS\srv.sys 319488 bytes (Microsoft Corporation, Server driver)
0x8CC04000 C:\Windows\system32\DRIVERS\HSXHWBS2.sys 311296 bytes (Conexant Systems, Inc., HSF_HWB2 WDM driver)
0x8D394000 C:\Windows\system32\DRIVERS\yk60x86.sys 311296 bytes (Marvell, Miniport Driver for Marvell Yukon Ethernet Controller.)
0x806A9000 C:\Windows\System32\drivers\volmgrx.sys 303104 bytes (Microsoft Corporation, Volume Manager Extension Driver)
0x8E493000 C:\Windows\system32\drivers\afd.sys 294912 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock)
0x8E661000 C:\Windows\System32\Drivers\aswSP.SYS 290816 bytes (AVAST Software, avast! self protection module)
0x8060D000 C:\Windows\system32\drivers\acpi.sys 286720 bytes (Microsoft Corporation, ACPI Driver for NT)
0x80429000 C:\Windows\system32\CLFS.SYS 266240 bytes (Microsoft Corporation, Common Log File System Driver)
0x8074B000 C:\Windows\system32\drivers\storport.sys 266240 bytes (Microsoft Corporation, Microsoft Storage Port Driver)
0x83173000 C:\Windows\system32\DRIVERS\USBPORT.SYS 253952 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver)
0x8E604000 C:\Windows\system32\DRIVERS\rdbss.sys 245760 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver)
0x82BA9000 C:\Windows\system32\drivers\NETIO.SYS 241664 bytes (Microsoft Corporation, Network I/O Subsystem)
0x8E791000 C:\Windows\system32\DRIVERS\mrxsmb10.sys 233472 bytes (Microsoft Corporation, Longhorn SMB Downlevel SubRdr)
0x83315000 C:\Windows\system32\drivers\volsnap.sys 233472 bytes (Microsoft Corporation, Volume Shadow Copy Driver)
0x8E74F000 C:\Windows\system32\drivers\aswMonFlt.sys 225280 bytes (AVAST Software, avast! File System Minifilter for Windows 2003/Vista)
0x8E005000 C:\Windows\system32\DRIVERS\usbhub.sys 217088 bytes (Microsoft Corporation, Default Hub Driver for USB)
0x8241E000 ACPI_HAL 208896 bytes
0x8241E000 C:\Windows\system32\hal.dll 208896 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL)
0x807A9000 C:\Windows\system32\drivers\fltmgr.sys 204800 bytes (Microsoft Corporation, Microsoft Filesystem Filter Manager)
0x8E4E0000 C:\Windows\System32\DRIVERS\netbt.sys 204800 bytes (Microsoft Corporation, MBT Transport driver)
0x8DDCE000 C:\Windows\system32\DRIVERS\msiscsi.sys 192512 bytes (Microsoft Corporation, Microsoft iSCSI Initiator Driver)
0x805D3000 C:\Windows\system32\drivers\portcls.sys 184320 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices))
0x82B7E000 C:\Windows\system32\drivers\msrpc.sys 176128 bytes (Microsoft Corporation, Kernel Remote Procedure Call Provider)
0x8CC50000 C:\Windows\system32\DRIVERS\ks.sys 172032 bytes (Microsoft Corporation, Kernel CSA Library)
0x9FFAD000 C:\Windows\System32\Drivers\fastfat.SYS 163840 bytes (Microsoft Corporation, Fast FAT File System Driver)
0x8E7CA000 C:\Windows\System32\DRIVERS\srv2.sys 163840 bytes (Microsoft Corporation, Smb 2.0 Server driver)
0x83365000 C:\Windows\System32\drivers\ecache.sys 159744 bytes (Microsoft Corporation, Special Memory Device Cache)
0x80664000 C:\Windows\system32\drivers\pci.sys 159744 bytes (Microsoft Corporation, NT Plug and Play PCI Enumerator)
0x831D8000 C:\Windows\system32\drivers\drmk.sys 151552 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter)
0x8CD94000 C:\Windows\system32\DRIVERS\ndiswan.sys 143360 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption))
0x8339D000 C:\Windows\system32\drivers\CLASSPNP.SYS 135168 bytes (Microsoft Corporation, SCSI Class System Dll)
0x819A4000 C:\Windows\system32\drivers\mrxdav.sys 135168 bytes (Microsoft Corporation, Windows NT WebDav Minirdr)
0x8E40C000 C:\Windows\System32\drivers\VIDEOPRT.SYS 135168 bytes (Microsoft Corporation, Video Port Driver)
0x819C5000 C:\Windows\system32\DRIVERS\mrxsmb.sys 126976 bytes (Microsoft Corporation, Windows NT SMB Minirdr)
0x80720000 C:\Windows\system32\drivers\ataport.SYS 122880 bytes (Microsoft Corporation, ATAPI Driver Extension)
0x8E6BF000 C:\Windows\System32\Drivers\dump_nvstor32.sys 118784 bytes
0x8078C000 C:\Windows\system32\DRIVERS\nvstor32.sys 118784 bytes (NVIDIA Corporation, NVIDIA® nForce(TM) Sata Performance Driver)
0x81959000 C:\Windows\System32\DRIVERS\srvnet.sys 118784 bytes (Microsoft Corporation, Server Network driver)
0x830F4000 C:\Windows\System32\drivers\fwpkclnt.sys 110592 bytes (Microsoft Corporation, FWP/IPsec Kernel-Mode API)
0x8E734000 C:\Windows\system32\drivers\luafv.sys 110592 bytes (Microsoft Corporation, LUA File Virtualization Filter Driver)
0x81976000 C:\Windows\system32\DRIVERS\bowser.sys 102400 bytes (Microsoft Corporation, NT Lan Manager Datagram Receiver Driver)
0x8D376000 C:\Windows\system32\DRIVERS\cdrom.sys 98304 bytes (Microsoft Corporation, SCSI CD-ROM Driver)
0x819E4000 C:\Windows\system32\DRIVERS\mrxsmb20.sys 98304 bytes (Microsoft Corporation, Longhorn SMB 2.0 Redirector)
0x83133000 C:\Windows\system32\DRIVERS\parport.sys 98304 bytes (Microsoft Corporation, Parallel Port Driver)
0x8E64A000 C:\Windows\System32\Drivers\dfsc.sys 94208 bytes (Microsoft Corporation, DFS Namespace Client Driver)
0x8CD7D000 C:\Windows\system32\DRIVERS\rasl2tp.sys 94208 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver)
0x9FF80000 C:\Windows\system32\DRIVERS\cdfs.sys 90112 bytes (Microsoft Corporation, CD-ROM File System Driver)
0x8E59D000 C:\Windows\system32\DRIVERS\pacer.sys 90112 bytes (Microsoft Corporation, QoS Packet Scheduler)
0x8E45F000 C:\Windows\system32\DRIVERS\tdx.sys 90112 bytes (Microsoft Corporation, TDI Translation Driver)
0x8198F000 C:\Windows\System32\drivers\mpsdrv.sys 86016 bytes (Microsoft Corporation, Microsoft Protection Service Driver)
0x8CDDA000 C:\Windows\system32\DRIVERS\rassstp.sys 86016 bytes (Microsoft Corporation, RAS SSTP Miniport Call Manager)
0x8E706000 C:\Windows\system32\DRIVERS\USBSTOR.SYS 86016 bytes (Microsoft Corporation, USB Mass Storage Class Driver)
0x9FF51000 C:\Windows\system32\DRIVERS\WUDFRd.sys 86016 bytes (Microsoft Corporation, Windows Driver Foundation - User-mode Driver Framework Reflector)
0x8CDC6000 C:\Windows\system32\DRIVERS\raspptp.sys 81920 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol)
0x8E47F000 C:\Windows\system32\DRIVERS\smb.sys 81920 bytes (Microsoft Corporation, SMB Transport driver)
0x8314B000 C:\Windows\system32\DRIVERS\i8042prt.sys 77824 bytes (Microsoft Corporation, i8042 Port Driver)
0x818C8000 C:\Windows\system32\DRIVERS\rspndr.sys 77824 bytes (Microsoft Corporation, Link-Layer Topology Responder Driver for NDIS 6)
0x8E5C1000 C:\Windows\system32\DRIVERS\wanarp.sys 77824 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver)
0x9FF66000 C:\Windows\system32\DRIVERS\WUDFPf.sys 73728 bytes (Microsoft Corporation, Windows Driver Foundation - User-mode Driver Framework Platform Driver)
0x8338C000 C:\Windows\system32\drivers\disk.sys 69632 bytes (Microsoft Corporation, PnP Disk Driver)
0x8E03A000 C:\Windows\System32\Drivers\NDProxy.SYS 69632 bytes (Microsoft Corporation, NDIS Proxy)
0x80410000 C:\Windows\system32\PSHED.dll 69632 bytes (Microsoft Corporation, Platform Specific Hardware Error Driver)
0x83123000 C:\Windows\system32\DRIVERS\amdk8.sys 65536 bytes (Microsoft Corporation, Processor Device Driver)
0x807DB000 C:\Windows\system32\drivers\fileinfo.sys 65536 bytes (Microsoft Corporation, FileInfo Filter Driver)
0x8E6E5000 C:\Windows\system32\DRIVERS\HIDCLASS.SYS 65536 bytes (Microsoft Corporation, Hid Class Library)
0x818B8000 C:\Windows\system32\DRIVERS\lltdio.sys 65536 bytes (Microsoft Corporation, Link-Layer Topology Mapper I/O Driver)
0x80708000 C:\Windows\System32\drivers\mountmgr.sys 65536 bytes (Microsoft Corporation, Mount Point Manager)
0x8D2CB000 C:\Windows\system32\DRIVERS\ohci1394.sys 65536 bytes (Microsoft Corporation, 1394 OpenHCI Port Driver)
0x8CDEF000 C:\Windows\system32\DRIVERS\termdd.sys 65536 bytes (Microsoft Corporation, Terminal Server Driver)
0x8E725000 C:\Windows\system32\DRIVERS\monitor.sys 61440 bytes (Microsoft Corporation, Monitor Driver)
0x83356000 C:\Windows\System32\Drivers\mup.sys 61440 bytes (Microsoft Corporation, Multiple UNC Provider driver)
0x8068B000 C:\Windows\System32\drivers\partmgr.sys 61440 bytes (Microsoft Corporation, Partition Management Driver)
0x8CDB7000 C:\Windows\system32\DRIVERS\raspppoe.sys 61440 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver)
0x831B1000 C:\Windows\system32\DRIVERS\usbehci.sys 61440 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver)
0x8069A000 C:\Windows\system32\drivers\volmgr.sys 61440 bytes (Microsoft Corporation, Volume Manager Driver)
0x8D2DB000 C:\Windows\system32\DRIVERS\1394BUS.SYS 57344 bytes (Microsoft Corporation, 1394 Bus Device Driver)
0x94F10000 C:\Windows\System32\cdd.dll 57344 bytes (Microsoft Corporation, Canonical Display Driver)
0x8E5B3000 C:\Windows\system32\DRIVERS\netbios.sys 57344 bytes (Microsoft Corporation, NetBIOS interface driver)
0x8E448000 C:\Windows\System32\Drivers\Npfs.SYS 57344 bytes (Microsoft Corporation, NPFS Driver)
0x806FA000 C:\Windows\system32\drivers\PCIIDEX.SYS 57344 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension)
0x8E6A8000 C:\Windows\System32\Drivers\crashdmp.sys 53248 bytes (Microsoft Corporation, Crash Dump Driver)
0x8D2BE000 C:\Windows\system32\drivers\modem.sys 53248 bytes (Microsoft Corporation, Modem Device Driver)
0x8073E000 C:\Windows\system32\drivers\nvstor.sys 53248 bytes (NVIDIA Corporation, NVIDIA® nForce(TM) Sata Performance Driver)
0x831CB000 C:\Windows\system32\DRIVERS\umbus.sys 53248 bytes (Microsoft Corporation, User-Mode Bus Enumerator)
0x805C6000 C:\Windows\system32\drivers\WDFLDR.SYS 53248 bytes (Microsoft Corporation, WDFLDR)
0x9FF45000 C:\Windows\System32\drivers\tcpipreg.sys 49152 bytes (Microsoft Corporation, TCP/IP Registry Compatibility Driver)
0x82BEB000 C:\Windows\System32\drivers\vga.sys 49152 bytes (Microsoft Corporation, VGA/Super VGA Video Driver)
0x8DDC2000 C:\Windows\System32\drivers\watchdog.sys 49152 bytes (Microsoft Corporation, Watchdog Driver)
0x8315E000 C:\Windows\system32\DRIVERS\kbdclass.sys 45056 bytes (Microsoft Corporation, Keyboard Class Driver)
0x831C0000 C:\Windows\system32\DRIVERS\mouclass.sys 45056 bytes (Microsoft Corporation, Mouse Class Driver)
0x8E43D000 C:\Windows\System32\Drivers\Msfs.SYS 45056 bytes (Microsoft Corporation, Mailslot driver)
0x8D3EB000 C:\Windows\system32\DRIVERS\ndistapi.sys 45056 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver)
0x8D3E0000 C:\Windows\system32\DRIVERS\TDI.SYS 45056 bytes (Microsoft Corporation, TDI Wrapper)
0x9FFF2000 C:\Windows\system32\DRIVERS\tunnel.sys 45056 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver)
0x8E475000 C:\Windows\System32\Drivers\aswTdi.SYS 40960 bytes (AVAST Software, avast! TDI Filter Driver)
0x8E6B5000 C:\Windows\System32\Drivers\dump_diskdump.sys 40960 bytes
0x8E71B000 C:\Windows\System32\drivers\Dxapi.sys 40960 bytes (Microsoft Corporation, DirectX API Driver)
0x8D3F6000 C:\Windows\system32\DRIVERS\mssmbios.sys 40960 bytes (Microsoft Corporation, System Management BIOS Driver)
0x8E640000 C:\Windows\system32\drivers\nsiproxy.sys 40960 bytes (Microsoft Corporation, NSI Proxy)
0x9FF3B000 C:\Windows\System32\Drivers\secdrv.SYS 40960 bytes (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., Macrovision SECURITY Driver)
0x83169000 C:\Windows\system32\DRIVERS\usbohci.sys 40960 bytes (Microsoft Corporation, OHCI USB Miniport Driver)
0x818DB000 C:\Windows\system32\DRIVERS\asyncmac.sys 36864 bytes (Microsoft Corporation, MS Remote Access serial network driver)
0x833BE000 C:\Windows\system32\drivers\crcdisk.sys 36864 bytes (Microsoft Corporation, Disk Block Verification Filter Driver)
0x8D200000 C:\Windows\System32\Drivers\Fs_Rec.SYS 36864 bytes (Microsoft Corporation, File System Recognizer Driver)
0x8E6DC000 C:\Windows\system32\DRIVERS\hidusb.sys 36864 bytes (Microsoft Corporation, USB Miniport Driver for Input Devices)
0x9FF96000 C:\Windows\System32\Drivers\Normandy.SYS 36864 bytes (RKU Driver)
0x8E456000 C:\Windows\System32\DRIVERS\rasacd.sys 36864 bytes (Microsoft Corporation, RAS Automatic Connection Driver)
0x94EF0000 C:\Windows\System32\TSDDD.dll 36864 bytes (Microsoft Corporation, Framebuffer Display Driver)
0x8311A000 C:\Windows\system32\DRIVERS\tunmp.sys 36864 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver)
0x80653000 C:\Windows\system32\drivers\WMILIB.SYS 36864 bytes (Microsoft Corporation, WMILIB WMI support library Dll)
0x80718000 C:\Windows\system32\drivers\atapi.sys 32768 bytes (Microsoft Corporation, ATAPI IDE Miniport Driver)
0x80421000 C:\Windows\system32\BOOTVID.dll 32768 bytes (Microsoft Corporation, VGA Boot Driver)
0x818E4000 C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys 32768 bytes (Check Point Software Technologies, ZoneAlarm Browser Security)
0x8E6FE000 C:\Windows\system32\DRIVERS\mouhid.sys 32768 bytes (Microsoft Corporation, HID Mouse Filter Driver)
0x8065C000 C:\Windows\system32\drivers\msisadrv.sys 32768 bytes (Microsoft Corporation, ISA Driver)
0x8E42D000 C:\Windows\System32\DRIVERS\RDPCDD.sys 32768 bytes (Microsoft Corporation, RDP Miniport)
0x8E435000 C:\Windows\system32\drivers\rdpencdd.sys 32768 bytes (Microsoft Corporation, RDP Miniport)
0x8334E000 C:\Windows\System32\Drivers\spldr.sys 32768 bytes (Microsoft Corporation, loader for security processor)
0x9FF78000 C:\Windows\system32\DRIVERS\xaudio.sys 32768 bytes (Conexant Systems, Inc., Modem Audio Device Driver)
0x82BE4000 C:\Windows\System32\Drivers\Beep.SYS 28672 bytes (Microsoft Corporation, BEEP Driver)
0x8E6F5000 C:\Windows\system32\DRIVERS\HIDPARSE.SYS 28672 bytes (Microsoft Corporation, Hid Parsing Library)
0x80409000 C:\Windows\system32\kdcom.dll 28672 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL)
0x83000000 C:\Windows\System32\Drivers\Null.SYS 28672 bytes (Microsoft Corporation, NULL Driver)
0x9FE52000 C:\Windows\system32\DRIVERS\parvdm.sys 28672 bytes (Microsoft Corporation, VDM Parallel Driver)
0x806F3000 C:\Windows\system32\drivers\pciide.sys 28672 bytes (Microsoft Corporation, Generic PCI IDE Bus Driver)
0x8D38E000 C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 24576 bytes (GEAR Software Inc., CD DVD Filter)
0x8E4DB000 C:\Windows\System32\Drivers\aswRdr.SYS 20480 bytes (AVAST Software, avast! TDI RDR Driver)
0x9FE59000 C:\Windows\system32\DRIVERS\mdmxsdk.sys 16384 bytes (Conexant, Diagnostic Interface x86 Driver)
0x8E786000 C:\Windows\System32\Drivers\aswFsBlk.SYS 12288 bytes (AVAST Software, avast! File System Access Blocking Driver)
0x8DDFD000 C:\Windows\system32\DRIVERS\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator)
0x8E6FC000 C:\Windows\system32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver)
==============================================
>Stealth
==============================================
==============================================
>Files
==============================================
!-->[Hidden] C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\IGTK50ZG\collapse_hvr[1]
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF1D6C.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF2800.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF30EA.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF30FE.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF316E.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF317E.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF31C2.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF31D2.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF36C2.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF426A.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF77B9.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF7B99.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF7BAE.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF7C50.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF7C71.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF7CBF.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF7CD1.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DF9E2B.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFA009.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFA2AE.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFA2C3.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFA358.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFA36D.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFA3B7.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFA3CF.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFB200.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFB609.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFBBD.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFC2C.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFD50.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFD60.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFDB7.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFDC7.tmp::$DATA
!-->[Hidden] C:\Users\Owner\AppData\Local\Temp\~DFFAD7.tmp::$DATA
!-->[Hidden] C:\Windows\Prefetch\RUNDLL32.EXE-7768279B.pf
==============================================
>Hooks
==============================================
ntkrnlpa.exe+0x000A87AA, Type: Inline - RelativeJump 0x824F97AA-->824F97B1 [ntkrnlpa.exe]
ntkrnlpa.exe+0x000AC8A0, Type: Inline - RelativeJump 0x824FD8A0-->824FD88B [ntkrnlpa.exe]
ntkrnlpa.exe-->NtLoadDriver, Type: Inline - RelativeJump 0x825BCDF0-->8E67E790 [aswSP.SYS]
ntkrnlpa.exe-->ObInsertObject, Type: Inline - RelativeJump 0x82681063-->8E67BC88 [aswSP.SYS]
ntkrnlpa.exe-->ObMakeTemporaryObject, Type: Inline - RelativeJump 0x8262828F-->8E67A1EE [aswSP.SYS]
ntkrnlpa.exe-->TmInitSystem, Type: Inline - PushRet 0x827AA1DE-->C3A1E4C7 [unknown_code_page]
[1000]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1000]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1000]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1000]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1000]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1000]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1000]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1000]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1000]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1000]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1000]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[1000]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[1000]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[1000]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[1000]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[1000]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1088]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1088]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1088]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[1088]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[1088]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[1088]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[1088]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[1088]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1132]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1132]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1132]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[1132]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[1132]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[1132]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[1132]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[1132]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1172]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1172]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1172]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[1172]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[1172]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[1172]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[1172]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[1172]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1276]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1276]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1276]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[1276]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1324]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1324]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1324]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1324]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1324]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1324]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1324]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1324]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1324]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1324]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[1324]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[1324]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[1324]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[1324]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[1324]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[1428]rundll32.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1428]rundll32.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1428]rundll32.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1428]rundll32.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1428]rundll32.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1428]rundll32.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1428]rundll32.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1428]rundll32.exe-->advapi32.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x77C814BC-->00000000 [shimeng.dll]
[1428]rundll32.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1428]rundll32.exe-->gdi32.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x77B61170-->00000000 [shimeng.dll]
[1428]rundll32.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1428]rundll32.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1428]rundll32.exe-->shell32.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x768E1414-->00000000 [shimeng.dll]
[1428]rundll32.exe-->user32.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x77D51300-->00000000 [shimeng.dll]
[1428]rundll32.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[1428]rundll32.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[1428]rundll32.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[1428]rundll32.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[1428]rundll32.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[1428]rundll32.exe-->ws2_32.dll-->kernel32.dll-->GetProcAddress, Type: IAT modification 0x4B0D11E8-->00000000 [shimeng.dll]
[1548]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1548]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1548]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1548]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1548]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1548]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1548]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1548]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1548]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1548]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1548]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[1548]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[1548]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[1548]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[1548]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[1548]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[1724]RtHDVCpl.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[1724]RtHDVCpl.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[1856]AvastSvc.exe-->kernel32.dll-->SetUnhandledExceptionFilter, Type: Inline - PushRet 0x773FA84F-->00000000 [unknown_code_page]
[2316]AvastUI.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[2316]AvastUI.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[2388]spoolsv.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[2388]spoolsv.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[2428]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[2428]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[2428]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[2428]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[2428]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[2428]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[2428]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[2428]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[2456]taskeng.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[2456]taskeng.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[2456]taskeng.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[2456]taskeng.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[2456]taskeng.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[2456]taskeng.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[2456]taskeng.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[2456]taskeng.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[2484]sidebar.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[2484]sidebar.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[2484]sidebar.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[2484]sidebar.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[2484]sidebar.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[2484]sidebar.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[2484]sidebar.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[2484]sidebar.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[264]dwm.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[264]dwm.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[264]dwm.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[264]dwm.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[264]dwm.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[264]dwm.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[264]dwm.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[264]dwm.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[264]dwm.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[264]dwm.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[264]dwm.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[264]dwm.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[264]dwm.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[264]dwm.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[264]dwm.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[2872]taskeng.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[2872]taskeng.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[2872]taskeng.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[2872]taskeng.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[2872]taskeng.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[2872]taskeng.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[2872]taskeng.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[2872]taskeng.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[3172]AppleMobileDeviceService.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[3172]AppleMobileDeviceService.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[3208]mDNSResponder.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[3208]mDNSResponder.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[3244]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[3244]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[3244]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[3244]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[3244]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[3244]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[3244]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[3244]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[3360]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[3360]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[3360]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[3360]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[3432]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[3432]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[3432]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[3432]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[3432]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[3432]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[3432]svchost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[3432]svchost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[3432]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[3432]svchost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[3432]svchost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[3480]SearchIndexer.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[3480]SearchIndexer.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[3552]XAudio.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[3552]XAudio.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[3552]XAudio.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[3552]XAudio.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[3552]XAudio.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[3552]XAudio.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[3552]XAudio.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[3552]XAudio.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[3796]WUDFHost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[3796]WUDFHost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[380]explorer.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[380]explorer.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[380]explorer.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[380]explorer.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[380]explorer.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[380]explorer.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[380]explorer.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[380]explorer.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[380]explorer.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[380]explorer.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[380]explorer.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[380]explorer.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[380]explorer.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[380]explorer.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[380]explorer.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[5052]notepad.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[5052]notepad.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[5052]notepad.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[5052]notepad.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[5052]notepad.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[5052]notepad.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[5052]notepad.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[5052]notepad.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x767C7099-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x767C71E1-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x767C6DD9-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x767C6F81-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x767C72A1-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76789EB4-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x7678A07E-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->ImpersonateNamedPipeClient, Type: Inline - RelativeJump 0x76753A48-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x767C6CD9-->00000000 [snxhk.dll]
[624]iPodService.exe-->advapi32.dll-->SetThreadToken, Type: Inline - RelativeJump 0x76768E21-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->kernel32.dll-->OpenProcess, Type: Inline - RelativeJump 0x77417267-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x77A99390-->00000000 [snxhk.dll]
[624]iPodService.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x77AABA50-->00000000 [snxhk.dll]
[624]iPodService.exe-->ntdll.dll-->NtAccessCheckByType, Type: Inline - RelativeJump 0x77AD4044-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->ntdll.dll-->NtAlpcImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD4214-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->ntdll.dll-->NtImpersonateClientOfPort, Type: Inline - RelativeJump 0x77AD49E4-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->ntdll.dll-->NtSetInformationProcess, Type: Inline - RelativeJump 0x77AD5324-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->user32.dll-->FindWindowA, Type: Inline - RelativeJump 0x778E9D76-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->user32.dll-->FindWindowW, Type: Inline - RelativeJump 0x778FA441-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->user32.dll-->kernel32.dll-->LoadLibraryExW, Type: IAT modification 0x77D5115C-->00000000 [ISWSHEX.dll]
[624]iPodService.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x778E6322-->00000000 [snxhk.dll]
[624]iPodService.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x778E87AD-->00000000 [snxhk.dll]
[624]iPodService.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x778E9F3A-->00000000 [snxhk.dll]
[624]iPodService.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x778E98DB-->00000000 [snxhk.dll]
[624]iPodService.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x778EC06F-->00000000 [snxhk.dll]