GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2016-02-03 21:07:23 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD50 rev.01.0 465,76GB Running: qsdvfdts.exe; Driver: C:\Users\Bartek\AppData\Local\Temp\awrdipob.sys ---- User IAT/EAT - GMER 2.1 ---- IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msiexec.exe[ADVAPI32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msiexec.exe[ADVAPI32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msiexec.exe[ADVAPI32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msiexec.exe[ADVAPI32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msiexec.exe[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CopyFileW] [7fef02ea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CopyFileW] [7fef02ea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!SetFileSecurityW] [7fef02ebcb0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegSetValueExA] [7fef02eba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegDeleteKeyW] [7fef02ed12c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[KERNEL32.dll!SetFileAttributesW] [7fef02eabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[KERNEL32.dll!MoveFileW] [7fef02ea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\msi.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!CopyFileW] [7fef02ea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileW] [7fef02ea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef02eabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesA] [7fef02eab7c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileA] [7fef02ea2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!SetFileAttributesW] [7fef02eabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CopyFileW] [7fef02ea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\MPR.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\sfc_os.DLL[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!PrivCopyFileExW] [7fef02eab04] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\dwmapi.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!OpenFile] [7fef02ea890] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\MSCTF.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.DLL[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.DLL[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!SetFileAttributesW] [7fef02eabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!MoveFileW] [7fef02ea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!_lwrite] [7fef02eaa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileA] [7fef02ea2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!RegCreateKeyExA] [7fef02eb3dc] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!RegSetValueExA] [7fef02eba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\srvcli.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\wkscli.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\bcrypt.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CopyFileW] [7fef02ea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CreateFileA] [7fef02ea2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!MoveFileW] [7fef02ea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!SetFileAttributesW] [7fef02eabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\CFGMGR32.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\DEVRTL.dll[KERNEL32.dll!MoveFileW] [7fef02ea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\DEVRTL.dll[KERNEL32.dll!MoveFileExW] [7fef02ea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SRCLIENT.DLL[ADVAPI32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SRCLIENT.DLL[ADVAPI32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SRCLIENT.DLL[ADVAPI32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SPP.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SPP.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SPP.dll[KERNEL32.dll!SetFileAttributesW] [7fef02eabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SPP.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SPP.dll[ADVAPI32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SPP.dll[ADVAPI32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SPP.dll[ADVAPI32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SPP.dll[ADVAPI32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VSSAPI.DLL[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VSSAPI.DLL[KERNEL32.dll!RegCreateKeyExW] [7fef02eb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VSSAPI.DLL[KERNEL32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VSSAPI.DLL[KERNEL32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VSSAPI.DLL[KERNEL32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VSSAPI.DLL[KERNEL32.dll!CopyFileExW] [7fef02ea260] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ATL.DLL[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\ATL.DLL[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VssTrace.DLL[KERNEL32.dll!RegOpenKeyExW] [7fef02eb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\dsrole.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\System32\msxml3.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\System32\msxml3.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\System32\ES.DLL[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\System32\ES.DLL[KERNEL32.dll!SetFileAttributesW] [7fef02eabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\System32\ES.DLL[KERNEL32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\System32\ES.DLL[KERNEL32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegDeleteValueA] [7fef02ebb44] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegSetValueExA] [7fef02eba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegOpenKeyExA] [7fef02eb60c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegDeleteValueW] [7fef02ebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\PROPSYS.dll[KERNEL32.dll!RegSetValueExW] [7fef02ebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SAMLIB.dll[KERNEL32.dll!RegSetValueExA] [7fef02eba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SAMLIB.dll[KERNEL32.dll!RegCreateKeyExA] [7fef02eb3dc] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\SAMLIB.dll[KERNEL32.dll!RegOpenKeyExA] [7fef02eb60c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VERSION.DLL[KERNEL32.dll!_lcreat] [7fef02ea9a0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VERSION.DLL[KERNEL32.dll!_lopen] [7fef02ea924] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VERSION.DLL[KERNEL32.dll!_lwrite] [7fef02eaa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VERSION.DLL[KERNEL32.dll!DeleteFileA] [7fef02ea580] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VERSION.DLL[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VERSION.DLL[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VERSION.DLL[KERNEL32.dll!DeleteFileW] [7fef02ea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\VERSION.DLL[KERNEL32.dll!MoveFileW] [7fef02ea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\MSCOREE.DLL[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\MSCOREE.DLL[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\system32\MSCOREE.DLL[KERNEL32.dll!CreateFileA] [7fef02ea2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll[KERNEL32.dll!GetProcAddress] [7fefc934230] C:\Windows\system32\apphelp.dll IAT C:\Windows\system32\msiexec.exe[4596] @ C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll[KERNEL32.dll!CreateFileW] [7fef02ea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL ---- Threads - GMER 2.1 ---- Thread C:\Windows\System32\svchost.exe [4224:2436] 000007feea2c9688 ---- EOF - GMER 2.1 ----