Publicité
Publicité
Format du document : text/x-log
Prévisualisation
RogueKiller V10.6.3.0 (x64) [May 11 2015] por Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Site : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Sistema Operacional : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Iniciou : Modo normal
Usuário : Allan [Administrador]
Started from : C:\Users\Allan\Downloads\RogueKillerX64.exe
Modo : Escanear -- Data : 05/15/2015 14:33:38
¤¤¤ Processos : 0 ¤¤¤
¤¤¤ Registro : 30 ¤¤¤
[Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Encontrado
[Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C41A1C0E-EA6C-11D4-B1B8-444553540008} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5C0E622F-3D11-49B9-A246-8ABB64B787DC} | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{5C0E622F-3D11-49B9-A246-8ABB64B787DC} | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{5C0E622F-3D11-49B9-A246-8ABB64B787DC} | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Encontrado
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowUser : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowSetProgramAccessAndDefaults : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_TrackProgs : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowUser : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowSetProgramAccessAndDefaults : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_TrackProgs : 0 -> Encontrado
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Encontrado
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Encontrado
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Encontrado
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Encontrado
¤¤¤ Tarefas : 0 ¤¤¤
¤¤¤ Arquivos : 0 ¤¤¤
¤¤¤ Arquivos de hosts : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
¤¤¤ Antirootkit : 313 (Driver: Carregado) ¤¤¤
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGenKey : Unknown @ 0x73a43699 (jmp 0xfefba810|jmp 0xffffcef2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - GetStartupInfoA : Unknown @ 0x73a43db9 (jmp 0xfd0f2fb9|jmp 0xffffc7d2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceW : Unknown @ 0x73a42431 (jmp 0xfefb5a45|jmp 0xffffe15a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CloseServiceHandle : Unknown @ 0x73a42859 (jmp 0xfefaf25d|jmp 0xffffdd32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x73a41721 (jmp 0xfecc93c5|jmp 0xffffee6a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExA : Unknown @ 0x73a42e49 (jmp 0xfd0c6198|jmp 0xffffd742|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - ControlService : Unknown @ 0x73a425f9 (jmp 0xfef9b48d|jmp 0xffffdf92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CreateServiceA : Unknown @ 0x73a42989 (jmp 0xfef7f55d|jmp 0xffffdc02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - DeleteService : Unknown @ 0x73a42691 (jmp 0xfef9b50d|jmp 0xffffdefa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceA : Unknown @ 0x73a42399 (jmp 0xfefaf849|jmp 0xffffe1f2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptHashData : Unknown @ 0x73a43991 (jmp 0xfefb5abb|jmp 0xffffcbfa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextA : Unknown @ 0x73a43569 (jmp 0xfefba3f0|jmp 0xffffd022|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CreateServiceW : Unknown @ 0x73a42a21 (jmp 0xfef9b8cd|jmp 0xffffdb6a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - ChangeServiceConfigW : Unknown @ 0x73a427c1 (jmp 0xfef7f3f5|jmp 0xffffddca|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - GetStartupInfoA : Unknown @ 0x73a43db9 (jmp 0xfd0f2fb9|jmp 0xffffc7d2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptHashData : Unknown @ 0x73a43991 (jmp 0xfefb5abb|jmp 0xffffcbfa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x73a41721 (jmp 0xfecc93c5|jmp 0xffffee6a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
¤¤¤ Navegadores : 0 ¤¤¤
¤¤¤ Verificação da MBR : ¤¤¤
+++++ PhysicalDrive0: ST9500420AS +++++
--- User ---
[MBR] aab7097756c86678812a767034845d56
[BSP] c4e3e0c9b4a3c4002141e475985329c0 : Linux|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 81920 | Size: 13468 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 27664384 | Size: 363426 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 771964926 | Size: 100002 MB
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Site : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Sistema Operacional : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Iniciou : Modo normal
Usuário : Allan [Administrador]
Started from : C:\Users\Allan\Downloads\RogueKillerX64.exe
Modo : Escanear -- Data : 05/15/2015 14:33:38
¤¤¤ Processos : 0 ¤¤¤
¤¤¤ Registro : 30 ¤¤¤
[Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Encontrado
[Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C41A1C0E-EA6C-11D4-B1B8-444553540008} -> Encontrado
[Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5C0E622F-3D11-49B9-A246-8ABB64B787DC} | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{5C0E622F-3D11-49B9-A246-8ABB64B787DC} | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{5C0E622F-3D11-49B9-A246-8ABB64B787DC} | DhcpNameServer : 189.7.80.15 189.7.80.16 201.6.4.116 [(Unknown Country?) (XX)][(Unknown Country?) (XX)][-] -> Encontrado
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Encontrado
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowUser : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowSetProgramAccessAndDefaults : 0 -> Encontrado
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_TrackProgs : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowUser : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowSetProgramAccessAndDefaults : 0 -> Encontrado
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4145504383-1758021648-1909431757-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_TrackProgs : 0 -> Encontrado
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Encontrado
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Encontrado
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Encontrado
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Encontrado
¤¤¤ Tarefas : 0 ¤¤¤
¤¤¤ Arquivos : 0 ¤¤¤
¤¤¤ Arquivos de hosts : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
¤¤¤ Antirootkit : 313 (Driver: Carregado) ¤¤¤
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGenKey : Unknown @ 0x73a43699 (jmp 0xfefba810|jmp 0xffffcef2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - GetStartupInfoA : Unknown @ 0x73a43db9 (jmp 0xfd0f2fb9|jmp 0xffffc7d2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceW : Unknown @ 0x73a42431 (jmp 0xfefb5a45|jmp 0xffffe15a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CloseServiceHandle : Unknown @ 0x73a42859 (jmp 0xfefaf25d|jmp 0xffffdd32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x73a41721 (jmp 0xfecc93c5|jmp 0xffffee6a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExA : Unknown @ 0x73a42e49 (jmp 0xfd0c6198|jmp 0xffffd742|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - ControlService : Unknown @ 0x73a425f9 (jmp 0xfef9b48d|jmp 0xffffdf92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CreateServiceA : Unknown @ 0x73a42989 (jmp 0xfef7f55d|jmp 0xffffdc02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - DeleteService : Unknown @ 0x73a42691 (jmp 0xfef9b50d|jmp 0xffffdefa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceA : Unknown @ 0x73a42399 (jmp 0xfefaf849|jmp 0xffffe1f2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptHashData : Unknown @ 0x73a43991 (jmp 0xfefb5abb|jmp 0xffffcbfa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextA : Unknown @ 0x73a43569 (jmp 0xfefba3f0|jmp 0xffffd022|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CreateServiceW : Unknown @ 0x73a42a21 (jmp 0xfef9b8cd|jmp 0xffffdb6a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - ChangeServiceConfigW : Unknown @ 0x73a427c1 (jmp 0xfef7f3f5|jmp 0xffffddca|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - GetStartupInfoA : Unknown @ 0x73a43db9 (jmp 0xfd0f2fb9|jmp 0xffffc7d2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptHashData : Unknown @ 0x73a43991 (jmp 0xfefb5abb|jmp 0xffffcbfa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x73a41721 (jmp 0xfecc93c5|jmp 0xffffee6a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73a41ed9 (jmp 0xfcb82049|jmp 0xffffe6b2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73a42ab9 (jmp 0xfcb82dbd|jmp 0xffffdad2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x73a415f1 (jmp 0xfcb81955|jmp 0xffffef9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73a41689 (jmp 0xfcb819bd|jmp 0xffffef02|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x73a420a1 (jmp 0xfcb802e5|jmp 0xffffe4ea|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73a41d11 (jmp 0xfcb803a5|jmp 0xffffe87a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73a44441 (jmp 0xfcb843bd|jmp 0xffffc14a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73a43bf1 (jmp 0xfcb83ffd|jmp 0xffffc99a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73a43c89 (jmp 0xfcb62ca8|jmp 0xffffc902|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73a43b59 (jmp 0xfcb82a4d|jmp 0xffffca32|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateSection : Unknown @ 0x73a44b61 (jmp 0xfcb84b71|jmp 0xffffba2a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73a42b51 (jmp 0xfcb82fdd|jmp 0xffffda3a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73a41da9 (jmp 0xfcb8213d|jmp 0xffffe7e2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73a42c81 (jmp 0xfcb81051|jmp 0xffffd90a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetValueKey : Unknown @ 0x73a44c91 (jmp 0xfcb84a81|jmp 0xffffb8fa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73a43309 (jmp 0xfcb83209|jmp 0xffffd282|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73a41c79 (jmp 0xfcb81e19|jmp 0xffffe912|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x73a428f1 (jmp 0xfcb419a6|jmp 0xffffdc9a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenSection : Unknown @ 0x73a44ac9 (jmp 0xfcb84cb5|jmp 0xffffbac2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateMutant : Unknown @ 0x73a44a31 (jmp 0xfcb84249|jmp 0xffffbb5a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73a41e41 (jmp 0xfcb81ed1|jmp 0xffffe74a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x73a418e9 (jmp 0xfcb80ff9|jmp 0xffffeca2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73a43271 (jmp 0xfcb83365|jmp 0xffffd31a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73a42009 (jmp 0xfd0cace2|jmp 0xffffe582|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73a43ee9 (jmp 0xfecdc316|jmp 0xffffc6a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73a44019 (jmp 0xfecd046f|jmp 0xffffc572|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x73a440b1 (jmp 0xfecd2e0c|jmp 0xffffc4da|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73a43e51 (jmp 0xfcb81f1d|jmp 0xffffc73a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73a42f79 (jmp 0xfd0d9474|jmp 0xffffd612|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73a43f81 (jmp 0xfecdc69f|jmp 0xffffc60a|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x73a421d1 (jmp 0xfecd33c8|jmp 0xffffe3ba|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x73a417b9 (jmp 0xfecca1b6|jmp 0xffffedd2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x73a437c9 (jmp 0xfefb58db|jmp 0xffffcdc2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x73a438f9 (jmp 0xfefb59db|jmp 0xffffcc92|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x73a441e1 (jmp 0xfd45fddb|jmp 0xffffc3aa|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73a42be9 (jmp 0xfcb81da9|jmp 0xffffd9a2|call 0x1fe)
[IAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73a43601 (jmp 0xfefb574d|jmp 0xffffcf8a|call 0x1fe)
¤¤¤ Navegadores : 0 ¤¤¤
¤¤¤ Verificação da MBR : ¤¤¤
+++++ PhysicalDrive0: ST9500420AS +++++
--- User ---
[MBR] aab7097756c86678812a767034845d56
[BSP] c4e3e0c9b4a3c4002141e475985329c0 : Linux|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 81920 | Size: 13468 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 27664384 | Size: 363426 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 771964926 | Size: 100002 MB
User = LL1 ... OK
User = LL2 ... OK