Vypíná se mi pc

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Uživatelský avatar
Ghost27
Level 1
Level 1
Příspěvky: 52
Registrován: listopad 13
Bydliště: Prague
Pohlaví: Muž
Stav:
Offline
Kontakt:

Vypíná se mi pc

Příspěvekod Ghost27 » 18 dub 2014 11:42

Zdravím,
vypíná se mi pc po hodině, pomůže někdo?
Děk

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 18. 4. 2014
Scan Time: 11:38:55
Logfile: mbam.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.18.03
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows 8
CPU: x86
File System: NTFS
User: Radek

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 245583
Time Elapsed: 14 min, 10 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 1
PUP.Optional.Spigot.A, C:\Users\Radek\AppData\Roaming\Search Protection\SearchProtection.exe, 4456, , [68631e0d9cdfb87e47bbec50d9270af6]

Modules: 0
(No malicious items detected)

Registry Keys: 10
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}, , [19b267c45427a98dc833ee2f6b97dd23],
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\TYPELIB\{A0EE0278-2986-4E5A-884E-A3BF0357E476}, , [19b267c45427a98dc833ee2f6b97dd23],
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\INTERFACE\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}, , [19b267c45427a98dc833ee2f6b97dd23],
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}, , [19b267c45427a98dc833ee2f6b97dd23],
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\Updater.AmiUpd.1, , [19b267c45427a98dc833ee2f6b97dd23],
PUP.Optional.SoftwareUpdater, HKLM\SOFTWARE\CLASSES\Updater.AmiUpd, , [19b267c45427a98dc833ee2f6b97dd23],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\MediaViewV1alpha4701, , [28a356d585f61a1c33a0165fd230e41c],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\MediaWatchV1home3609, , [7f4c4ae13c3f1f174a7c8a241be87d83],
PUP.Optional.MyEmoticons.A, HKU\S-1-5-21-3534537208-2187551088-1508768168-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Search Protection, , [7d4e200b710aa09620c161186a98c937],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MediaViewV1alpha4701, , [9833b7741b609c9adaf37ae83ac88c74],

Registry Values: 3
PUP.Optional.Spigot.A, HKU\S-1-5-21-3534537208-2187551088-1508768168-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SearchProtection, "C:\Users\Radek\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart, , [68631e0d9cdfb87e47bbec50d9270af6]
PUP.Optional.MediaView.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewV1alpha4701.net, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff, , [ae1d56d5324970c604d08fe60cf608f8]
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaWatchV1home3609.net, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff, , [18b3fe2d80fb2f0707c0ebc31de6c43c]

Registry Data: 0
(No malicious items detected)

Folders: 24
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy\0F3B72FF6C6B45DDBAC5C92CFB981385, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy\604E03CACF504F4C891D2D0B6D43130C, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy\78F0520CA547467E8AD433F5E67630B0, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy\9D6AC6E0C52E422A8CD6764223AB5A9C, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy\B5FD8EFA4D75410B9440D9A7B340C7AD, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.NextLive.A, C:\Users\Radek\AppData\Roaming\newnext.me, , [dbf02b00d9a2e056d6fe332cbf43b54b],
PUP.Optional.NextLive.A, C:\Users\Radek\AppData\Roaming\newnext.me\cache, , [dbf02b00d9a2e056d6fe332cbf43b54b],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ch, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome\content, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome\content\icons, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome\content\icons\default, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ie, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ch, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome\content, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome\content\icons, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome\content\icons\default, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ie, , [319a87a45526290d81a74e17d82ade22],

Files: 35
PUP.Optional.Spigot.A, C:\Users\Radek\AppData\Roaming\Search Protection\SearchProtection.exe, , [68631e0d9cdfb87e47bbec50d9270af6],
PUP.Optional.SoftwareUpdater, C:\Users\Radek\AppData\Local\SwvUpdater\Updater.exe, , [19b267c45427a98dc833ee2f6b97dd23],
PUP.Optional.NextLive.A, C:\Users\Radek\AppData\Roaming\OpenCandy\9D6AC6E0C52E422A8CD6764223AB5A9C\Mobogenie_Setup_2.1.35_507.exe, , [6e5d4fdcb3c8a690ea6c9eb1f30e9a66],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\rmi\photoscape-3.6.5.exe, , [eedd78b37a0116207ea4bf8cbe467c84],
PUP.Optional.Spigot.A, C:\Users\Radek\Desktop\YTDSetup.exe, , [5e6d83a8daa195a1acce1a0c02fe21df],
PUP.Optional.Spigot.A, C:\Users\Radek\AppData\Local\Temp\SearchProtectionSetup.exe, , [c90241ea6d0e2d09aa5995a75ca4e51b],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Local\Temp\nso86FC.tmp\PhotoScape_V3.6.3.exe, , [9b3042e94635c76f22002922d52fff01],
PUP.Optional.OpenCandy, C:\Users\Radek\Downloads\PhotoScape-setup (1).exe, , [dbf00a212259ef4769b959f2e420b64a],
PUP.Optional.OpenCandy, C:\Users\Radek\Downloads\PhotoScape-setup.exe, , [f3d88c9fd5a65adcf032b79427dd02fe],
Trojan.Keylogger.MK, C:\Users\Radek\Downloads\Crack Activer.rar, , [96351219f18a6fc7e41a787ddd26dd23],
PUP.Software.Updater, C:\Windows\Tasks\AmiUpdXp.job, , [0bc01f0c3f3cd2645b5bb4d18b77758b],
Bifrose.Trace, C:\Users\Radek\AppData\Roaming\logs.dat, , [27a4fd2e413aeb4ba1e38c2243bff40c],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy\604E03CACF504F4C891D2D0B6D43130C\Trial-14.0.1000.88_en-US_1004739_ROW-EN.exe, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy\78F0520CA547467E8AD433F5E67630B0\chrometest3.html, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.OpenCandy, C:\Users\Radek\AppData\Roaming\OpenCandy\B5FD8EFA4D75410B9440D9A7B340C7AD\Trial-14.0.1000.88_en-US_1004739_ROW-EN.exe, , [6b605bd07cff6dc966b82935738f7987],
PUP.Optional.NextLive.A, C:\Users\Radek\AppData\Roaming\newnext.me\nengine.cookie, , [dbf02b00d9a2e056d6fe332cbf43b54b],
PUP.Optional.NextLive.A, C:\Users\Radek\AppData\Roaming\newnext.me\cache\spark.bin, , [dbf02b00d9a2e056d6fe332cbf43b54b],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\uninstall.exe, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ch\MediaViewV1alpha4701.crx, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome.manifest, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\install.rdf, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome\content\ffMediaViewV1alpha4701.js, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome\content\ffMediaViewV1alpha4701ffaction.js, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome\content\overlay.xul, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome\content\icons\Thumbs.db, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaView.A, C:\Program Files\MediaViewV1\MediaViewV1alpha4701\ff\chrome\content\icons\default\MediaViewV1alpha4701_32.png, , [9833b7741b609c9adaf37ae83ac88c74],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ch\MediaWatchV1home3609.crx, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome.manifest, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\install.rdf, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome\content\ffMediaWatchV1home3609.js, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome\content\ffMediaWatchV1home3609ffaction.js, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome\content\overlay.xul, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome\content\icons\Thumbs.db, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.MediaWatch.A, C:\Program Files\MediaWatchV1\MediaWatchV1home3609\ff\chrome\content\icons\default\MediaWatchV1home3609_32.png, , [319a87a45526290d81a74e17d82ade22],
PUP.Optional.ASK.A, C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://www.search.ask.com/?tpid=SGT-V7&o=APN11004&pf=V7&trgb=CR&p2=,[8c3f80ab5229a2940375a4affb091ee2]EB3Q,[8c3f80ab5229a2940375a4affb091ee2]EYYYYYY,[8c3f80ab5229a2940375a4affb091ee2]EYY,[8c3f80ab5229a2940375a4affb091ee2]ECZ&gct=hp&apn_ptnrs=,[8c3f80ab5229a2940375a4affb091ee2]EB3Q&apn_dtid=,[8c3f80ab5229a2940375a4affb091ee2]EYYYYYY,[8c3f80ab5229a2940375a4affb091ee2]EYY,[8c3f80ab5229a2940375a4affb091ee2]ECZ&apn_dbr=Opera.exe_0_12.16.1860.0&apn_uid=C0B23FFF-06A6-49B3-92EC-14F8929DABE4&itbv=12.7.0.2390&doi=2013-11-19&psv=", "http://www.msn.com/?pc=UP97&ocid=UP97DHP", "www.google.com" ],), ,[8c3f80ab5229a2940375a4affb091ee2]

Physical Sectors: 0
(No malicious items detected)


(end)

Reklama
kaktus
Level 1.5
Level 1.5
Příspěvky: 103
Registrován: duben 14
Pohlaví: Muž
Stav:
Offline

Re: Vypíná se mi pc

Příspěvekod kaktus » 18 dub 2014 12:23

A nepřehřívá se ti PC? Jak hodně jej vytížíš za tu hodinu?

Uživatelský avatar
Ghost27
Level 1
Level 1
Příspěvky: 52
Registrován: listopad 13
Bydliště: Prague
Pohlaví: Muž
Stav:
Offline
Kontakt:

Re: Vypíná se mi pc

Příspěvekod Ghost27 » 18 dub 2014 14:24

Nemyslím si
Přílohy
teplota.png
Naposledy upravil(a) Ghost27 dne 18 dub 2014 14:28, celkem upraveno 1 x.

guest
Pohlaví: Nespecifikováno

Re: Vypíná se mi pc

Příspěvekod guest » 18 dub 2014 14:27

//V sekci HijackThis radí jenom rádci co tomu rozumí a také sem patří i log z HjT//

Uživatelský avatar
Ghost27
Level 1
Level 1
Příspěvky: 52
Registrován: listopad 13
Bydliště: Prague
Pohlaví: Muž
Stav:
Offline
Kontakt:

Re: Vypíná se mi pc

Příspěvekod Ghost27 » 18 dub 2014 14:34

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:33:46, on 18. 4. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe\LiveComm.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Windows 8 Start Screen Customizer\ModernUIStartScreen.exe
C:\Users\Radek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Users\Radek\AppData\Roaming\Search Protection\SearchProtection.exe
C:\Users\Radek\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
C:\Users\Radek\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
C:\Program Files\TeamViewer\Version9\TeamViewer.exe
C:\Windows\System32\WWAHost.exe
C:\Windows\WinStore\WSHost.exe
C:\Users\Radek\Downloads\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Win8StartScreen] "C:\Program Files\Windows 8 Start Screen Customizer\ModernUIStartScreen.exe" -hidden
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Radek\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Radek\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Radek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [SearchProtection] "C:\Users\Radek\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Radek\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Startup: Age2 Config.lnk = ?
O4 - Startup: GameRanger.lnk = C:\Users\Radek\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\KMPService.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe

--
End of file - 6419 bytes

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Vypíná se mi pc

Příspěvekod jaro3 » 18 dub 2014 18:53

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Uživatelský avatar
Ghost27
Level 1
Level 1
Příspěvky: 52
Registrován: listopad 13
Bydliště: Prague
Pohlaví: Muž
Stav:
Offline
Kontakt:

Re: Vypíná se mi pc

Příspěvekod Ghost27 » 20 dub 2014 17:32

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 20. 4. 2014
Scan Time: 17:15:04
Logfile: mbam.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.20.03
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows 8
CPU: x86
File System: NTFS
User: Radek

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 246312
Time Elapsed: 15 min, 2 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
PUP.Optional.ASK.A, C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://www.search.ask.com/?tpid=SGT-V7&o=APN11004&pf=V7&trgb=CR&p2=Replaced,[a3f02b0181fa0135d133a1b44aba738d]EB3QReplaced,[a3f02b0181fa0135d133a1b44aba738d]EYYYYYYReplaced,[a3f02b0181fa0135d133a1b44aba738d]EYYReplaced,[a3f02b0181fa0135d133a1b44aba738d]ECZ&gct=hp&apn_ptnrs=Replaced,[a3f02b0181fa0135d133a1b44aba738d]EB3Q&apn_dtid=Replaced,[a3f02b0181fa0135d133a1b44aba738d]EYYYYYYReplaced,[a3f02b0181fa0135d133a1b44aba738d]EYYReplaced,[a3f02b0181fa0135d133a1b44aba738d]ECZ&apn_dbr=Opera.exe_0_12.16.1860.0&apn_uid=C0B23FFF-06A6-49B3-92EC-14F8929DABE4&itbv=12.7.0.2390&doi=2013-11-19&psv=", "http://www.msn.com/?pc=UP97&ocid=UP97DHP", "www.google.com" ],), Replaced,[a3f02b0181fa0135d133a1b44aba738d]

Physical Sectors: 0
(No malicious items detected)


(end)






# AdwCleaner v3.003 - Report created 14/09/2013 at 15:35:49
# Updated 07/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : User - USER-7BCFF6EE7E
# Running from : C:\Documents and Settings\User\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : APNMCP
Service Found : Application Updater
Service Found : BackupStack
Service Found : desksvc
Service Found : IB Updater
Service Found : IBUpdaterService
Service Found : ICQ Service
Service Found : winzipersvc
Service Found : WsysSvc

***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\\invalidprefs.js
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\Extensions\gophoto@gophoto.it.xpi
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\Extensions\torntv2@torntv.com.xpi
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\searchplugins\Babylon.xml
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\searchplugins\BrowserProtect.xml
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\searchplugins\softonic.xml
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\searchplugins\SweetIm.xml
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\user.js
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\extensions\Extensions\wtxpcom@mybrowserbar.com
File Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\extensions\user.js
File Found : C:\Documents and Settings\User\Nabídka Start\Programy\jZip.lnk
File Found : C:\Documents and Settings\User\Nabídka Start\Programy\Po spuštìní\MyPC Backup.lnk
File Found : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Found : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Found : C:\Program Files\Mozilla Firefox\user.js
File Found : C:\WINDOWS\system32\dmwu.exe
File Found : C:\WINDOWS\system32\ImhxxpComm.dll
File Found : C:\WINDOWS\system32\roboot.exe
File Found : C:\WINDOWS\Tasks\AmiUpdXp.job
File Found : C:\WINDOWS\Tasks\FTdownloader V4.0-codedownloader.job
File Found : C:\WINDOWS\Tasks\FTdownloader V4.0-enabler.job
File Found : C:\WINDOWS\Tasks\FTdownloader V4.0-updater.job
File Found : C:\WINDOWS\Tasks\SpeedUpMyPC.job
File Found : C:\WINDOWS\Tasks\spmonitor.job
Folder Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\Extensions\iyddbuie@pxuiiyy.co.uk
Folder Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\Extensions\plugin@yontoo.com
Folder Found : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\extensions\Extensions\plugin@yontoo.com
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\hepfenndjoibhgfopdfkohmnbdmpgapk
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\hphibigbodkkohoglgfkddblldpfohjl
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lgnbhdnimikkoodkogjlcllngimhlapp
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pgmfkblbflahhponhjmkcnpjinenhlnc
Folder Found : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Folder Found C:\DOCUME~1\User\LOCALS~1\Temp\apn
Folder Found C:\DOCUME~1\User\LOCALS~1\Temp\eIntaller
Folder Found C:\DOCUME~1\User\LOCALS~1\Temp\jZip
Folder Found C:\Documents and Settings\All Users\Data aplikací\apn
Folder Found C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork
Folder Found C:\Documents and Settings\All Users\Data aplikací\AVG Secure Search
Folder Found C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Found C:\Documents and Settings\All Users\Data aplikací\clsoft ltd
Folder Found C:\Documents and Settings\All Users\Data aplikací\connTinuieitosAve
Folder Found C:\Documents and Settings\All Users\Data aplikací\conttinuuetoosoave
Folder Found C:\Documents and Settings\All Users\Data aplikací\eSafe
Folder Found C:\Documents and Settings\All Users\Data aplikací\IBUpdaterService
Folder Found C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Found C:\Documents and Settings\All Users\Data aplikací\MMaagniiPPic
Folder Found C:\Documents and Settings\All Users\Data aplikací\Premium
Folder Found C:\Documents and Settings\All Users\Data aplikací\Saffe save
Folder Found C:\Documents and Settings\All Users\Data aplikací\SaveAs
Folder Found C:\Documents and Settings\All Users\Data aplikací\SaveAs
Folder Found C:\Documents and Settings\All Users\Data aplikací\Seearcih-NeiwTaib
Folder Found C:\Documents and Settings\All Users\Data aplikací\Seearcih-NeiwTaib
Folder Found C:\Documents and Settings\All Users\Data aplikací\StarApp
Folder Found C:\Documents and Settings\All Users\Data aplikací\SweetIM
Folder Found C:\Documents and Settings\All Users\Data aplikací\Tarma Installer
Folder Found C:\Documents and Settings\All Users\Data aplikací\Trymedia
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\connTinuieitosAve
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\connTinuieitosAve
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\conttinuuetoosoave
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\conttinuuetoosoave
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\Desk 365
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\Desk 365
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\Media Finder
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\Media Finder
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\optimizer pro
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\optimizer pro
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\SaveAs
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\SaveAs
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\SaveAs
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\SaveAs
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\Uniblue\SpeedUpMyPC
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\Uniblue\SpeedUpMyPC
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\WinZip Registry Optimizer
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\WinZip Registry Optimizer
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\WinZipper
Folder Found C:\Documents and Settings\All Users\Nabídka Start\Programy\WinZipper
Folder Found C:\Documents and Settings\User\Data aplikací\AVG Secure Search
Folder Found C:\Documents and Settings\User\Data aplikací\Babylon
Folder Found C:\Documents and Settings\User\Data aplikací\Desk 365
Folder Found C:\Documents and Settings\User\Data aplikací\eIntaller
Folder Found C:\Documents and Settings\User\Data aplikací\ExpressFiles
Folder Found C:\Documents and Settings\User\Data aplikací\file scout
Folder Found C:\Documents and Settings\User\Data aplikací\Funmoods
Folder Found C:\Documents and Settings\User\Data aplikací\Media Finder
Folder Found C:\Documents and Settings\User\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Folder Found C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\jetpack
Folder Found C:\Documents and Settings\User\Data aplikací\OpenCandy
Folder Found C:\Documents and Settings\User\Data aplikací\optimizer pro
Folder Found C:\Documents and Settings\User\Data aplikací\PerformerSoft
Folder Found C:\Documents and Settings\User\Data aplikací\PriceGong
Folder Found C:\Documents and Settings\User\Data aplikací\Search Settings
Folder Found C:\Documents and Settings\User\Data aplikací\Softonic
Folder Found C:\Documents and Settings\User\Data aplikací\StatusWinks
Folder Found C:\Documents and Settings\User\Data aplikací\SwvUpdater
Folder Found C:\Documents and Settings\User\Data aplikací\Systweak
Folder Found C:\Documents and Settings\User\Data aplikací\Toolbar4
Folder Found C:\Documents and Settings\User\Data aplikací\Uniblue\SpeedUpMyPC
Folder Found C:\Documents and Settings\User\Data aplikací\WinZipper
Folder Found C:\Documents and Settings\User\IECompatCache
Folder Found C:\Documents and Settings\User\Local Settings\Data aplikací\apn
Folder Found C:\Documents and Settings\User\Local Settings\Data aplikací\AVG Secure Search
Folder Found C:\Documents and Settings\User\Local Settings\Data aplikací\Conduit
Folder Found C:\Documents and Settings\User\Local Settings\Data aplikací\cool_mirage
Folder Found C:\Documents and Settings\User\Local Settings\Data aplikací\cre
Folder Found C:\Documents and Settings\User\Local Settings\Data aplikací\jZip
Folder Found C:\Documents and Settings\User\Local Settings\Data aplikací\PackageAware
Folder Found C:\Documents and Settings\User\Local Settings\Data aplikací\Vid-Saver
Folder Found C:\Documents and Settings\User\Nabídka Start\Programy\FTDownloader.com
Folder Found C:\Documents and Settings\User\Nabídka Start\Programy\MyPC Backup
Folder Found C:\Documents and Settings\User\Nabídka Start\Programy\MyPC Backup
Folder Found C:\Documents and Settings\User\Nabídka Start\Programy\TornTV.com
Folder Found C:\Program Files\1ClickDownload
Folder Found C:\Program Files\Application Updater
Folder Found C:\Program Files\AskPartnerNetwork
Folder Found C:\Program Files\AVG Secure Search
Folder Found C:\Program Files\Common Files\337
Folder Found C:\Program Files\Common Files\AVG Secure Search
Folder Found C:\Program Files\Common Files\spigot
Folder Found C:\Program Files\Conduit
Folder Found C:\Program Files\Desk 365
Folder Found C:\Program Files\file scout
Folder Found C:\Program Files\FTdownloader V4.0
Folder Found C:\Program Files\FTDownloader.com
Folder Found C:\Program Files\Funmoods
Folder Found C:\Program Files\Gophoto.it
Folder Found C:\Program Files\IB Updater
Folder Found C:\Program Files\jZip
Folder Found C:\Program Files\MyPC Backup
Folder Found C:\Program Files\MyPC Backup
Folder Found C:\Program Files\OApps
Folder Found C:\Program Files\optimizer pro
Folder Found C:\Program Files\Perion
Folder Found C:\Program Files\RegClean Pro
Folder Found C:\Program Files\SweetIM
Folder Found C:\Program Files\TornTV.com
Folder Found C:\Program Files\Uniblue\SpeedUpMyPC
Folder Found C:\Program Files\Vid-Saver
Folder Found C:\Program Files\WinZip Registry Optimizer
Folder Found C:\Program Files\WinZipper
Folder Found C:\Program Files\Yontoo
Folder Found C:\Program Files\YTD Toolbar
Folder Found C:\WINDOWS\system32\ARFC
Folder Found C:\WINDOWS\system32\WNLT

***** [ Shortcuts ] *****

Shortcut Found : C:\Documents and Settings\User\Plocha\Opera.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026 )
Shortcut Found : C:\Documents and Settings\User\Plocha\Martin\Mozilla Firefox.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026 )
Shortcut Found : C:\Documents and Settings\All Users\Nabídka Start\Programy\Opera.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026 )
Shortcut Found : C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome\Google Chrome.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026 )
Shortcut Found : C:\Documents and Settings\User\Nabídka Start\Programy\Pøíslušenství\Systémové nástroje\Internet Explorer (bez doplòkù).lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026 )
Shortcut Found : C:\Documents and Settings\User\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026 )
Shortcut Found : C:\Documents and Settings\User\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Opera.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026 )
Shortcut Found : C:\Documents and Settings\User\Data aplikací\Microsoft\Internet Explorer\Quick Launch\Spustit prohlížeè Internet Explorer.lnk ( hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026 )

***** [ Registry ] *****

Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command [(Default)] - "C:\Program Files\Google\Chrome\Application\chrome.exe" hxxp://www.delta-homes.com/?utm_source= ... 1377201827
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\5dedbdab368ea43
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\AskPartnerNetwork
Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\ConduitSearchScopes
Key Found : HKCU\Software\Cr_Installer
Key Found : HKCU\Software\Crossrider
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\ExpressFiles
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\FTdownloader V4.0
Key Found : HKCU\Software\Funmoods
Key Found : HKCU\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Found : HKCU\Software\Google\Chrome\Extensions\hepfenndjoibhgfopdfkohmnbdmpgapk
Key Found : HKCU\Software\IB Updater
Key Found : HKCU\Software\ICQ\ICQToolbar
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\InstalledBrowserExtensions
Key Found : HKCU\Software\jZip
Key Found : HKCU\Software\MediaFinder
Key Found : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\jZip
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{19BCAFD0-47EB-1EE9-4DC6-73998B9981F7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1ACB5ABE-4890-4747-952C-F13BDB93FB75}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5911488E-9D1E-40EC-8CBB-06B231CC153F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{944FEDFD-C4FD-441D-8275-9C651A9FFBDE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CA4520F3-AE13-4FB1-A513-58E23991C86D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311531182}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311551174}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{19BCAFD0-47EB-1EE9-4DC6-73998B9981F7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1ACB5ABE-4890-4747-952C-F13BDB93FB75}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5911488E-9D1E-40EC-8CBB-06B231CC153F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{944FEDFD-C4FD-441D-8275-9C651A9FFBDE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CA4520F3-AE13-4FB1-A513-58E23991C86D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\jZip
Key Found : HKCU\Software\Optimizer Pro
Key Found : HKCU\Software\PIP
Key Found : HKCU\Software\PrivitizeVPNInstallDates
Key Found : HKCU\Software\Search Settings
Key Found : HKCU\Software\SmartBar
Key Found : HKCU\Software\Smiley Bar for Facebook
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\StartSearch
Key Found : HKCU\Software\systweak
Key Found : HKCU\Software\V9
Key Found : HKCU\Software\WNLT
Key Found : HKCU\Software\wscontb
Key Found : HKCU\Software\Zugo
Key Found : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Key Found : HKLM\SOFTWARE\5dedbdab368ea43
Key Found : HKLM\Software\Application Updater
Key Found : HKLM\Software\AskPartnerNetwork
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\1ClicktorrentFile
Key Found : HKLM\SOFTWARE\Classes\1ClicktorrentFile1
Key Found : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Key Found : HKLM\SOFTWARE\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
Key Found : HKLM\SOFTWARE\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\AddonsFramework.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\ButtonSite.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Found : HKLM\SOFTWARE\Classes\AppID\PropertySync.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHost.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311531182}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311551174}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322532282}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322552274}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CA4520F3-AE13-4FB1-A513-58E23991C86D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0003491.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0003491.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035382.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035382.BHO.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035382.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035382.Sandbox.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035574.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035574.BHO.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035574.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0035574.Sandbox.1
Key Found : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Key Found : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Key Found : HKLM\SOFTWARE\Classes\FTDownloader
Key Found : HKLM\SOFTWARE\Classes\gencrawler_gc.GenCrawler
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
Key Found : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
Key Found : HKLM\SOFTWARE\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355535582}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555574}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366536682}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556674}
Key Found : HKLM\SOFTWARE\Classes\Interface\{93CF54F5-CFAA-4440-B588-8ED0DFAD5C21}
Key Found : HKLM\SOFTWARE\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D3BC53E7-0437-4C97-90EE-2CD6FF47FB14}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Found : HKLM\SOFTWARE\Classes\MF
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Found : HKLM\SOFTWARE\Classes\oneclick
Key Found : HKLM\SOFTWARE\Classes\oneclickmg
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\S
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Key Found : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Key Found : HKLM\SOFTWARE\Classes\sim-packages
Key Found : HKLM\SOFTWARE\Classes\speedupmypc
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Key Found : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Found : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344534482}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344554474}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Found : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\Software\Default Tab
Key Found : HKLM\Software\delta-homesSoftware
Key Found : HKLM\Software\Desksvc
Key Found : HKLM\Software\eSafeSecControl
Key Found : HKLM\Software\ExpressFiles
Key Found : HKLM\Software\FTdownloader V4.0
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hepfenndjoibhgfopdfkohmnbdmpgapk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hphibigbodkkohoglgfkddblldpfohjl
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\lgnbhdnimikkoodkogjlcllngimhlapp
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pgmfkblbflahhponhjmkcnpjinenhlnc
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Key Found : HKLM\Software\IB Updater
Key Found : HKLM\Software\ICQ\ICQToolbar
Key Found : HKLM\Software\InstallCore
Key Found : HKLM\Software\jZip
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{105CE2F6-6C71-4553-95DB-0521A2C0F060}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4AC48E96-EB40-4792-9D9D-70D59D8754BA}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5935E203-F846-461D-89DF-435059EFCBB8}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6419A700-23B8-46EA-800B-C0EA78E133A2}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9BC852D3-9D70-4611-9AFC-016840417A4C}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{16726771-C380-4280-BAF9-1223B3838786}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{EB03EF39-C655-D560-FA95-79182B837D64}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Desk 365
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FTdownloader V4.0
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Funmoods
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Optimizer Pro_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PC Performer_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\RegClean Pro_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Smiley Bar for Facebook
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Updater Service
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Vid-Saver
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WNLT
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WSysControl
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311531182}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551174}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{944FEDFD-C4FD-441D-8275-9C651A9FFBDE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA4520F3-AE13-4FB1-A513-58E23991C86D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Desk 365
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FTdownloader V4.0
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Updater Service
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\qvo6Software
Key Found : HKLM\Software\Search Settings
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\systweak
Key Found : HKLM\Software\Tarma Installer
Key Found : HKLM\Software\Uniblue\DriverScanner
Key Found : HKLM\Software\Uniblue\SpeedUpMyPC
Key Found : HKLM\Software\V9
Key Found : HKLM\Software\WNLT
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Product Found : SweetIM for Messenger 3.7
Product Found : SweetPacks bundle uninstaller
Product Found : Update Manager for SweetPacks 1.1
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EEE6C35D-6118-11DC-9C72-001320C79847}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Desk 365]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Value Found : HKCU\Software\Mozilla\Firefox\Extensions [statuswinks@StatusWinks]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FE1DEEEA-DB6D-44B8-83F0-34FC0F9D1052}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [statuswinks@StatusWinks]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\All Users\Data aplikací\eSafe\eGdpSvc.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\ExpressFiles\expressdl.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\ExpressFiles\ExpressFiles.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\WINDOWS\system32\ARFC\wrtc.exe]

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page Restore] - hxxp://isearch.babylon.com/?affID=12112 ... 004c4f4f50
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.qvo6.com/?utm_source=b&utm_m ... 1374484026
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [bProtectTabs] - hxxp://www2.delta-search.com/?affID=119 ... 004C4F4F50
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch] - hxxp://search.qvo6.com/web/?utm_source= ... 1374484026

-\\ Mozilla Firefox v

[ File : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\91vkrrpd.default\prefs.js ]

Line Found : user_pref("browser.newtab.url", "hxxp://www2.delta-search.com/?affID=119529&babsrc=NT_ss&mntrId=685302004C4F4F50");
Line Found : user_pref("browser.search.order.1", "Delta Search");
Line Found : 1.gif\" border=\"0\" /> </a>';break;case \"468x60\":url=' <a title=\"Adult chat rooms 24/7\" href=\"hxxp://www.livejasmin.com/listpage.php?psid=admaven&psprogram=revs&pstool=1_15580\" align=\"center\"[...]
Line Found : ads zedo.com mshft adorika akamaihd.net/ssa/ trusted-serving\".split(\" \");for(i=0;i<b.length;i++){var a=document.title?document.title.toLowerCase():\"z\";if(document.referrer&&-1<document.referrer.i[...]
Line Found : ads zedo.com mshft adorika akamaihd.net/ssa/ trusted-serving\".split(\" \");for(i=0;i<b.length;i++){var a=document.title?document.title.toLowerCase():\"z\";if(document.referrer&&-1<document.referrer.i[...]
Line Found : ads zedo.com mshft adorika akamaihd.net/ssa/ trusted-serving\".split(\" \");for(i=0;i<b.length;i++){var a=document.title?document.title.toLowerCase():\"z\";if(document.referrer&&-1<document.referrer.i[...]
Line Found : "app-system-user\",\"addons\":{\"gencrawler@some.com\":{\"descriptor\":\"C:\\\\Documents and Settings\\\\User\\\\Data aplikací\\\\Mozilla\\\\Extensions\\\\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\\\\ge[...]
Line Found : user_pref("extensions.privitize.srchPrvdr", "Search The Web (privitize)");
Line Found : user_pref("extensions.Softonic.autoRvrt", "false");
Line Found : user_pref("extensions.Softonic.dfltSrch", true);
Line Found : user_pref("extensions.Softonic.dnsErr", true);
Line Found : user_pref("extensions.Softonic.hmpg", true);
Line Found : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=");
Line Found : user_pref("extensions.Softonic.hpOld0", "hxxp://isearch.babylon.com/?affID=119529&tt=190313_wo1&babsrc=HP_ss&mntrId=685302004C4F4F50");
Line Found : user_pref("extensions.Softonic.kw_url", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&q=");
Line Found : user_pref("extensions.Softonic.newTab", true);
Line Found : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=15&cc=");
Line Found : user_pref("extensions.Softonic.rvrt", "false");
Line Found : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Line Found : user_pref("extentions.y2layers.defaultEnableAppsList", "DropDownDeals,buzzdock,YontooNewOffers");
Line Found : user_pref("extentions.y2layers.installId", "bc59cf4d-0860-4d50-9507-4414a0214d3b");

[ File : C:\Documents and Settings\User\Data aplikací\Mozilla\Firefox\Profiles\extensions\prefs.js ]


-\\ Google Chrome v28.0.1500.72

[ File : C:\Documents and Settings\User\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

Found : icon_url
Found : search_url
Found : suggest_url
Found : suggest_url

*************************

AdwCleaner[R0].txt - [53133 octets] - [14/09/2013 15:35:49]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [53194 octets] ##########
# AdwCleaner v3.100 - Report created 20/04/2014 at 17:30:39
# Updated 20/04/2014 by Xplode
# Operating System : Windows 8 Enterprise Evaluation (32 bits)
# Username : Radek - HOME
# Running from : C:\Users\Radek\Downloads\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Found : C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
File Found : C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www2.delta-search.com_0.localstorage
File Found : C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www2.delta-search.com_0.localstorage-journal
File Found : C:\Users\Radek\daemonprocess.txt
Folder Found : C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Folder Found C:\Program Files\GreenTree Applications
Folder Found C:\Program Files\GreyGray
Folder Found C:\Program Files\MediaWatchV1
Folder Found C:\Program Files\Mobogenie
Folder Found C:\ProgramData\apn
Folder Found C:\Users\Radek\.android
Folder Found C:\Users\Radek\AppData\Local\genienext
Folder Found C:\Users\Radek\AppData\Local\Mobogenie
Folder Found C:\Users\Radek\AppData\Local\SwvUpdater
Folder Found C:\Users\Radek\AppData\Roaming\Search Protection
Folder Found C:\Users\Radek\Documents\Mobogenie

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Classes\pokki
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A75BE48D-BF58-4A8B-B96C-F9A09DFB9844}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Found : HKLM\Software\MediaViewV1
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF2D6074-8317-4050-890F-116E54CFAAD9}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v34.0.1847.116

[ File : C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [55950 octets] - [14/09/2013 15:35:49]
AdwCleaner[R1].txt - [45193 octets] - [14/09/2013 20:12:11]
AdwCleaner[R2].txt - [15783 octets] - [20/11/2013 20:59:54]
AdwCleaner[R3].txt - [15097 octets] - [23/11/2013 16:43:12]
AdwCleaner[R4].txt - [14283 octets] - [23/12/2013 13:39:47]
AdwCleaner[S0].txt - [44242 octets] - [14/09/2013 20:20:58]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [56316 octets] ##########

Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Vypíná se mi pc

Příspěvekod Orcus » 21 dub 2014 09:41

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
Klikni na „ Smazat“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

====================================================

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

====================================================

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit

-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Láska hřeje, ale uhlí je uhlí. :fire:



Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.

Uživatelský avatar
Ghost27
Level 1
Level 1
Příspěvky: 52
Registrován: listopad 13
Bydliště: Prague
Pohlaví: Muž
Stav:
Offline
Kontakt:

Re: Vypíná se mi pc

Příspěvekod Ghost27 » 25 dub 2014 20:00

# AdwCleaner v3.202 - Report created 25/04/2014 at 19:45:38
# Updated 23/04/2014 by Xplode
# Operating System : Windows 8 Enterprise Evaluation (32 bits)
# Username : Radek - HOME
# Running from : C:\Users\Radek\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\MediaViewV1

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\Software\MediaWatchV1

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v34.0.1847.116

[ File : C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://isearch.babylon.com/?q={searchTerms}&affID=115131&tt=4012_6&babsrc=SP_iclro&mntrId=68537d62000000000000c86000756979
Deleted [Search Provider] : hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=685302004C4F4F50&affID=121284&tt=240913_246&tsp=5016
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Startup_urls] : hxxp://www.search.ask.com/?tpid=SGT-V7& ... 11-19&psv=

*************************

AdwCleaner[R0].txt - [56397 octets] - [14/09/2013 15:35:49]
AdwCleaner[R1].txt - [48319 octets] - [14/09/2013 20:12:11]
AdwCleaner[R2].txt - [17214 octets] - [20/11/2013 20:59:54]
AdwCleaner[R3].txt - [15097 octets] - [23/11/2013 16:43:12]
AdwCleaner[R4].txt - [14283 octets] - [23/12/2013 13:39:47]
AdwCleaner[S0].txt - [47449 octets] - [14/09/2013 20:20:58]
AdwCleaner[S1].txt - [1805 octets] - [25/04/2014 19:45:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1865 octets] ##########




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 Enterprise Evaluation x86
Ran by Radek on p  25. 04. 2014 at 19:54:32,11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6BE917E3-C20D-4BD0-9034-CAD72E59BF4F}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p  25. 04. 2014 at 19:59:18,14
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



























RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8 (6.2.9200 ) 32 bits version
Spuštěno v : Normální režim
Uživatel : Radek [Práva správce]
Mód : Kontrola -- Datum : 04/25/2014 20:07:06
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[SUSP PATH] szndesktop.exe -- C:\Users\Radek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe [7] -> SMAZÁNO [TermProc]
[SUSP PATH] GameRanger.exe -- C:\Users\Radek\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe [7] -> SMAZÁNO [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Radek\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> NALEZENO
[RUN][SUSP PATH] HKCU\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Radek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> NALEZENO
[RUN][SUSP PATH] HKUS\S-1-5-21-3534537208-2187551088-1508768168-1001\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Radek\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> NALEZENO
[RUN][SUSP PATH] HKUS\S-1-5-21-3534537208-2187551088-1508768168-1001\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Radek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 1 ¤¤¤
[Radek][SUSP PATH] GameRanger.lnk : C:\Users\Radek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk @C:\Users\Radek\AppData\Roaming\GAMERA~1\GAMERA~2\GAMERA~2.EXE /autostart [-][7] -> NALEZENO

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] EAT @explorer.exe (AccGetRunningUtilityState) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x72679B1E)
[Address] EAT @explorer.exe (AccNotifyTouchInteraction) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7267ADC9)
[Address] EAT @explorer.exe (AccSetRunningUtilityState) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7267ADF6)
[Address] EAT @explorer.exe (AccessibleChildren) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7264974C)
[Address] EAT @explorer.exe (AccessibleObjectFromEvent) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x72641CE4)
[Address] EAT @explorer.exe (AccessibleObjectFromPoint) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7264C9A6)
[Address] EAT @explorer.exe (AccessibleObjectFromWindow) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7264850B)
[Address] EAT @explorer.exe (AccessibleObjectFromWindowTimeout) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7264A3C7)
[Address] EAT @explorer.exe (CreateStdAccessibleObject) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x726431F1)
[Address] EAT @explorer.exe (CreateStdAccessibleProxyA) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7267AE14)
[Address] EAT @explorer.exe (CreateStdAccessibleProxyW) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7264FC93)
[Address] EAT @explorer.exe (DllCanUnloadNow) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x72641479)
[Address] EAT @explorer.exe (DllGetClassObject) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x726489EB)
[Address] EAT @explorer.exe (DllRegisterServer) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7267AF45)
[Address] EAT @explorer.exe (DllUnregisterServer) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7267AF45)
[Address] EAT @explorer.exe (GetOleaccVersionInfo) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7265CDF3)
[Address] EAT @explorer.exe (GetProcessHandleFromHwnd) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7264ACDD)
[Address] EAT @explorer.exe (GetRoleTextA) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7267AE8E)
[Address] EAT @explorer.exe (GetRoleTextW) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x72648984)
[Address] EAT @explorer.exe (GetStateTextA) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7267AE5F)
[Address] EAT @explorer.exe (GetStateTextW) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7267AE41)
[Address] EAT @explorer.exe (IID_IAccessible) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x72641040)
[Address] EAT @explorer.exe (IID_IAccessibleHandler) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x726410A8)
[Address] EAT @explorer.exe (LIBID_Accessibility) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x72641464)
[Address] EAT @explorer.exe (LresultFromObject) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x72647906)
[Address] EAT @explorer.exe (ObjectFromLresult) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x72648481)
[Address] EAT @explorer.exe (PropMgrClient_LookupProp) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7264A702)
[Address] EAT @explorer.exe (WindowFromAccessibleObject) : dwrite.dll -> HOOKED (C:\Windows\System32\oleacc.dll @ 0x7264920A)
[Address] EAT @explorer.exe (DWriteCreateFactory) : shdocvw.dll -> HOOKED (C:\Windows\system32\dwrite.dll @ 0x726C640E)
[Address] EAT @explorer.exe (DllCanUnloadNow) : dhcpcsvc.DLL -> HOOKED (C:\Windows\System32\Windows.UI.Immersive.dll @ 0x70AB154D)
[Address] EAT @explorer.exe (DllGetActivationFactory) : dhcpcsvc.DLL -> HOOKED (C:\Windows\System32\Windows.UI.Immersive.dll @ 0x70ACE535)
[Address] EAT @explorer.exe (DllGetClassObject) : dhcpcsvc.DLL -> HOOKED (C:\Windows\System32\Windows.UI.Immersive.dll @ 0x70AB3225)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKS-00UU3A0 ATA Device +++++
--- User ---
[MBR] 5f1aa31adacdb11782dba491e9b257e7
[BSP] ec6a8d6f773b4c9ee06ddc615d818d5c : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 238464 MB
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 488376000 | Size: 238464 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04252014_200706.txt >>

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Vypíná se mi pc

Příspěvekod jaro3 » 26 dub 2014 10:53

Odinstaluj:
Spybot

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller


Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Uživatelský avatar
Ghost27
Level 1
Level 1
Příspěvky: 52
Registrován: listopad 13
Bydliště: Prague
Pohlaví: Muž
Stav:
Offline
Kontakt:

Re: Vypíná se mi pc

Příspěvekod Ghost27 » 26 dub 2014 12:33

# AdwCleaner v3.202 - Report created 26/04/2014 at 12:18:37
# Updated 23/04/2014 by Xplode
# Operating System : Windows 8 Enterprise Evaluation (32 bits)
# Username : Radek - HOME
# Running from : C:\Users\Radek\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v34.0.1847.116

[ File : C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [56397 octets] - [14/09/2013 15:35:49]
AdwCleaner[R1].txt - [48319 octets] - [14/09/2013 20:12:11]
AdwCleaner[R2].txt - [17214 octets] - [20/11/2013 20:59:54]
AdwCleaner[R3].txt - [16220 octets] - [23/11/2013 16:43:12]
AdwCleaner[R4].txt - [14283 octets] - [23/12/2013 13:39:47]
AdwCleaner[S0].txt - [47449 octets] - [14/09/2013 20:20:58]
AdwCleaner[S1].txt - [1945 octets] - [25/04/2014 19:45:38]
AdwCleaner[S2].txt - [1043 octets] - [26/04/2014 12:18:37]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1103 octets] ##########







~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 Enterprise Evaluation x86
Ran by Radek on so 26. 04. 2014 at 12:34:18,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 26. 04. 2014 at 12:38:34,58
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~






Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 26. 4. 2014
Cas skenování: 12:49:51
Protokol: mbam.txt
Správce: Ano

Verze: 2.00.1.1004
Databáze malwaru: v2014.04.26.01
Databáze rootkitu: v2014.03.27.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Chameleon: Vypnuto

OS: Windows 8
CPU: x86
Souborový systém: NTFS
Uživatel: Radek

Typ skenu: Sken hrozeb
Výsledek: Dokonceno
Prohledaných objektu: 221835
Uplynulý cas: 7 min, 9 sek

Pamet: Zapnuto
Po spuštení: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Shuriken: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíce registru: 0
(No malicious items detected)

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 0
(No malicious items detected)

Soubory: 0
(No malicious items detected)

Fyzické sektory: 0
(No malicious items detected)


(end)

Uživatelský avatar
Ghost27
Level 1
Level 1
Příspěvky: 52
Registrován: listopad 13
Bydliště: Prague
Pohlaví: Muž
Stav:
Offline
Kontakt:

Re: Vypíná se mi pc

Příspěvekod Ghost27 » 26 dub 2014 13:04

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8 (6.2.9200 ) 32 bits version
Spuštěno v : Normální režim
Uživatel : Radek [Práva správce]
Mód : Odebrat -- Datum : 04/26/2014 13:02:33
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 2 ¤¤¤
[SUSP PATH] szndesktop.exe -- C:\Users\Radek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe [7] -> SMAZÁNO [TermProc]
[SUSP PATH] GameRanger.exe -- C:\Users\Radek\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe [7] -> SMAZÁNO [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Radek\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> VYMAZÁNO
[RUN][SUSP PATH] HKCU\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Radek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> VYMAZÁNO
[RUN][SUSP PATH] HKUS\S-1-5-21-3534537208-2187551088-1508768168-1001\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Radek\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> [0x2] Systém nemůže nalézt uvedený soubor.
[RUN][SUSP PATH] HKUS\S-1-5-21-3534537208-2187551088-1508768168-1001\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Radek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> [0x2] Systém nemůže nalézt uvedený soubor.
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 1 ¤¤¤
[Radek][SUSP PATH] GameRanger.lnk : C:\Users\Radek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk @C:\Users\Radek\AppData\Roaming\GAMERA~1\GAMERA~2\GAMERA~2.EXE /autostart [-][7] -> VYMAZÁNO

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] EAT @explorer.exe (DWriteCreateFactory) : aticfx32.dll -> HOOKED (C:\Windows\system32\dwrite.dll @ 0x7256640E)
[Address] EAT @explorer.exe (AddIPAddress) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901337)
[Address] EAT @explorer.exe (AllocateAndGetInterfaceInfoFromStack) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FFD7C)
[Address] EAT @explorer.exe (AllocateAndGetIpAddrTableFromStack) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900AAE)
[Address] EAT @explorer.exe (CancelIPChangeNotify) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F5D4C)
[Address] EAT @explorer.exe (CancelMibChangeNotify2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FA4DE)
[Address] EAT @explorer.exe (CloseGetIPPhysicalInterfaceForDestination) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F891C)
[Address] EAT @explorer.exe (ConvertGuidToStringA) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F6C9B)
[Address] EAT @explorer.exe (ConvertGuidToStringW) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F3525)
[Address] EAT @explorer.exe (ConvertInterfaceAliasToLuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290563B)
[Address] EAT @explorer.exe (ConvertInterfaceGuidToLuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F3599)
[Address] EAT @explorer.exe (ConvertInterfaceIndexToLuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F3667)
[Address] EAT @explorer.exe (ConvertInterfaceLuidToAlias) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F8B48)
[Address] EAT @explorer.exe (ConvertInterfaceLuidToGuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F36A6)
[Address] EAT @explorer.exe (ConvertInterfaceLuidToIndex) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F6DDD)
[Address] EAT @explorer.exe (ConvertInterfaceLuidToNameA) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290543E)
[Address] EAT @explorer.exe (ConvertInterfaceLuidToNameW) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F6D45)
[Address] EAT @explorer.exe (ConvertInterfaceNameToLuidA) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729054B6)
[Address] EAT @explorer.exe (ConvertInterfaceNameToLuidW) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F37D2)
[Address] EAT @explorer.exe (ConvertInterfacePhysicalAddressToLuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290524A)
[Address] EAT @explorer.exe (ConvertIpv4MaskToLength) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905185)
[Address] EAT @explorer.exe (ConvertLengthToIpv4Mask) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FE6BE)
[Address] EAT @explorer.exe (ConvertRemoteInterfaceAliasToLuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729004B8)
[Address] EAT @explorer.exe (ConvertRemoteInterfaceGuidToLuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290033F)
[Address] EAT @explorer.exe (ConvertRemoteInterfaceIndexToLuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290071C)
[Address] EAT @explorer.exe (ConvertRemoteInterfaceLuidToAlias) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900620)
[Address] EAT @explorer.exe (ConvertRemoteInterfaceLuidToGuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290043D)
[Address] EAT @explorer.exe (ConvertRemoteInterfaceLuidToIndex) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290076B)
[Address] EAT @explorer.exe (ConvertStringToGuidA) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729007CE)
[Address] EAT @explorer.exe (ConvertStringToGuidW) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F789F)
[Address] EAT @explorer.exe (ConvertStringToInterfacePhysicalAddress) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290537F)
[Address] EAT @explorer.exe (CreateAnycastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905FEB)
[Address] EAT @explorer.exe (CreateIpForwardEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72902347)
[Address] EAT @explorer.exe (CreateIpForwardEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906E3D)
[Address] EAT @explorer.exe (CreateIpNetEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290226D)
[Address] EAT @explorer.exe (CreateIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729075F5)
[Address] EAT @explorer.exe (CreatePersistentTcpPortReservation) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729034E8)
[Address] EAT @explorer.exe (CreatePersistentUdpPortReservation) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729034C3)
[Address] EAT @explorer.exe (CreateProxyArpEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729016E9)
[Address] EAT @explorer.exe (CreateSortedAddressPairs) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907640)
[Address] EAT @explorer.exe (CreateUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729060AB)
[Address] EAT @explorer.exe (DeleteAnycastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905FD3)
[Address] EAT @explorer.exe (DeleteIPAddress) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729012A1)
[Address] EAT @explorer.exe (DeleteIpForwardEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290235F)
[Address] EAT @explorer.exe (DeleteIpForwardEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906E25)
[Address] EAT @explorer.exe (DeleteIpNetEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72902285)
[Address] EAT @explorer.exe (DeleteIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729075DD)
[Address] EAT @explorer.exe (DeletePersistentTcpPortReservation) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290349F)
[Address] EAT @explorer.exe (DeletePersistentUdpPortReservation) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290347B)
[Address] EAT @explorer.exe (DeleteProxyArpEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729016CB)
[Address] EAT @explorer.exe (DeleteUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906093)
[Address] EAT @explorer.exe (DisableMediaSense) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901056)
[Address] EAT @explorer.exe (EnableRouter) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729010B3)
[Address] EAT @explorer.exe (FlushIpNetTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729018B8)
[Address] EAT @explorer.exe (FlushIpNetTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907040)
[Address] EAT @explorer.exe (FlushIpPathTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729078A2)
[Address] EAT @explorer.exe (FreeMibTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F347D)
[Address] EAT @explorer.exe (GetAdapterIndex) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FFCF0)
[Address] EAT @explorer.exe (GetAdapterOrderMap) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FFC03)
[Address] EAT @explorer.exe (GetAdaptersAddresses) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F4114)
[Address] EAT @explorer.exe (GetAdaptersInfo) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FA92C)
[Address] EAT @explorer.exe (GetAnycastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905FB4)
[Address] EAT @explorer.exe (GetAnycastIpAddressTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905F97)
[Address] EAT @explorer.exe (GetBestInterface) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FBDA3)
[Address] EAT @explorer.exe (GetBestInterfaceEx) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F3329)
[Address] EAT @explorer.exe (GetBestRoute) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901448)
[Address] EAT @explorer.exe (GetBestRoute2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F7153)
[Address] EAT @explorer.exe (GetCurrentThreadCompartmentId) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F32E2)
[Address] EAT @explorer.exe (GetExtendedTcpTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FA369)
[Address] EAT @explorer.exe (GetExtendedUdpTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FA485)
[Address] EAT @explorer.exe (GetFriendlyIfIndex) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FFBED)
[Address] EAT @explorer.exe (GetIcmpStatistics) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901D15)
[Address] EAT @explorer.exe (GetIcmpStatisticsEx) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F9439)
[Address] EAT @explorer.exe (GetIfEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FB9B3)
[Address] EAT @explorer.exe (GetIfEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F5429)
[Address] EAT @explorer.exe (GetIfStackTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FC357)
[Address] EAT @explorer.exe (GetIfTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900197)
[Address] EAT @explorer.exe (GetIfTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F5B41)
[Address] EAT @explorer.exe (GetIfTable2Ex) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F5B5B)
[Address] EAT @explorer.exe (GetInterfaceInfo) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FFF5D)
[Address] EAT @explorer.exe (GetInvertedIfStackTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729080F9)
[Address] EAT @explorer.exe (GetIpAddrTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901E93)
[Address] EAT @explorer.exe (GetIpErrorString) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FF8D7)
[Address] EAT @explorer.exe (GetIpForwardEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906E6D)
[Address] EAT @explorer.exe (GetIpForwardTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FB8AB)
[Address] EAT @explorer.exe (GetIpForwardTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F79B4)
[Address] EAT @explorer.exe (GetIpInterfaceEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F63E4)
[Address] EAT @explorer.exe (GetIpInterfaceTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F6EC4)
[Address] EAT @explorer.exe (GetIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F8050)
[Address] EAT @explorer.exe (GetIpNetTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290205C)
[Address] EAT @explorer.exe (GetIpNetTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907625)
[Address] EAT @explorer.exe (GetIpNetworkConnectionBandwidthEstimates) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72908008)
[Address] EAT @explorer.exe (GetIpPathEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290794A)
[Address] EAT @explorer.exe (GetIpPathTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907AF6)
[Address] EAT @explorer.exe (GetIpStatistics) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72902435)
[Address] EAT @explorer.exe (GetIpStatisticsEx) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F65B9)
[Address] EAT @explorer.exe (GetMulticastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905F3A)
[Address] EAT @explorer.exe (GetMulticastIpAddressTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905F1D)
[Address] EAT @explorer.exe (GetNetworkInformation) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907ECC)
[Address] EAT @explorer.exe (GetNetworkParams) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F67E0)
[Address] EAT @explorer.exe (GetNumberOfInterfaces) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F93E1)
[Address] EAT @explorer.exe (GetOwnerModuleFromPidAndInfo) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FEE7E)
[Address] EAT @explorer.exe (GetOwnerModuleFromTcp6Entry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729037F8)
[Address] EAT @explorer.exe (GetOwnerModuleFromTcpEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72903835)
[Address] EAT @explorer.exe (GetOwnerModuleFromUdp6Entry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729048FC)
[Address] EAT @explorer.exe (GetOwnerModuleFromUdpEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72904939)
[Address] EAT @explorer.exe (GetPerAdapterInfo) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FF5AD)
[Address] EAT @explorer.exe (GetPerTcp6ConnectionEStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F9503)
[Address] EAT @explorer.exe (GetPerTcp6ConnectionStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290392E)
[Address] EAT @explorer.exe (GetPerTcpConnectionEStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F96FE)
[Address] EAT @explorer.exe (GetPerTcpConnectionStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72903A39)
[Address] EAT @explorer.exe (GetRTTAndHopCount) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72902AA7)
[Address] EAT @explorer.exe (GetSessionCompartmentId) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F3422)
[Address] EAT @explorer.exe (GetTcp6Table) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72903FD6)
[Address] EAT @explorer.exe (GetTcp6Table2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729045F5)
[Address] EAT @explorer.exe (GetTcpStatistics) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72903872)
[Address] EAT @explorer.exe (GetTcpStatisticsEx) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F920F)
[Address] EAT @explorer.exe (GetTcpTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290422D)
[Address] EAT @explorer.exe (GetTcpTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729042F5)
[Address] EAT @explorer.exe (GetTeredoPort) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72908536)
[Address] EAT @explorer.exe (GetUdp6Table) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729049C6)
[Address] EAT @explorer.exe (GetUdpStatistics) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72904976)
[Address] EAT @explorer.exe (GetUdpStatisticsEx) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F9318)
[Address] EAT @explorer.exe (GetUdpTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72904B74)
[Address] EAT @explorer.exe (GetUniDirectionalAdapterInfo) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729015E1)
[Address] EAT @explorer.exe (GetUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F844A)
[Address] EAT @explorer.exe (GetUnicastIpAddressTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F8CC8)
[Address] EAT @explorer.exe (Icmp6CreateFile) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729031AF)
[Address] EAT @explorer.exe (Icmp6ParseReplies) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72902DB6)
[Address] EAT @explorer.exe (Icmp6SendEcho2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72902DFF)
[Address] EAT @explorer.exe (IcmpCloseHandle) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FB2C3)
[Address] EAT @explorer.exe (IcmpCreateFile) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FB383)
[Address] EAT @explorer.exe (IcmpParseReplies) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FB86D)
[Address] EAT @explorer.exe (IcmpSendEcho) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FBE6F)
[Address] EAT @explorer.exe (IcmpSendEcho2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FBEA0)
[Address] EAT @explorer.exe (IcmpSendEcho2Ex) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FB5B9)
[Address] EAT @explorer.exe (InitializeIpForwardEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FC11A)
[Address] EAT @explorer.exe (InitializeIpInterfaceEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72908109)
[Address] EAT @explorer.exe (InitializeUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905950)
[Address] EAT @explorer.exe (InternalCleanupPersistentStore) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72908484)
[Address] EAT @explorer.exe (InternalCreateAnycastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290605E)
[Address] EAT @explorer.exe (InternalCreateIpForwardEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900B24)
[Address] EAT @explorer.exe (InternalCreateIpForwardEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906893)
[Address] EAT @explorer.exe (InternalCreateIpNetEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900B76)
[Address] EAT @explorer.exe (InternalCreateIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290711B)
[Address] EAT @explorer.exe (InternalCreateUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906138)
[Address] EAT @explorer.exe (InternalDeleteAnycastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906041)
[Address] EAT @explorer.exe (InternalDeleteIpForwardEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900B0A)
[Address] EAT @explorer.exe (InternalDeleteIpForwardEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290686A)
[Address] EAT @explorer.exe (InternalDeleteIpNetEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900B5C)
[Address] EAT @explorer.exe (InternalDeleteIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729070F2)
[Address] EAT @explorer.exe (InternalDeleteUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290611B)
[Address] EAT @explorer.exe (InternalFindInterfaceByAddress) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729058A8)
[Address] EAT @explorer.exe (InternalGetAnycastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906021)
[Address] EAT @explorer.exe (InternalGetAnycastIpAddressTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906003)
[Address] EAT @explorer.exe (InternalGetForwardIpTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F7BD0)
[Address] EAT @explorer.exe (InternalGetIPPhysicalInterfaceForDestination) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F85F3)
[Address] EAT @explorer.exe (InternalGetIfEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F5441)
[Address] EAT @explorer.exe (InternalGetIfTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900E49)
[Address] EAT @explorer.exe (InternalGetIfTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72908469)
[Address] EAT @explorer.exe (InternalGetIpAddrTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900E24)
[Address] EAT @explorer.exe (InternalGetIpForwardEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906B43)
[Address] EAT @explorer.exe (InternalGetIpForwardTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900DDA)
[Address] EAT @explorer.exe (InternalGetIpInterfaceEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F63FC)
[Address] EAT @explorer.exe (InternalGetIpInterfaceTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F6EF5)
[Address] EAT @explorer.exe (InternalGetIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F8068)
[Address] EAT @explorer.exe (InternalGetIpNetTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900DFF)
[Address] EAT @explorer.exe (InternalGetIpNetTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290737D)
[Address] EAT @explorer.exe (InternalGetMulticastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905F77)
[Address] EAT @explorer.exe (InternalGetMulticastIpAddressTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905F59)
[Address] EAT @explorer.exe (InternalGetTcp6Table2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900CF9)
[Address] EAT @explorer.exe (InternalGetTcp6TableWithOwnerModule) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900CAC)
[Address] EAT @explorer.exe (InternalGetTcp6TableWithOwnerPid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900CD4)
[Address] EAT @explorer.exe (InternalGetTcpTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900DB5)
[Address] EAT @explorer.exe (InternalGetTcpTable2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900D90)
[Address] EAT @explorer.exe (InternalGetTcpTableEx) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900D1E)
[Address] EAT @explorer.exe (InternalGetTcpTableWithOwnerModule) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900D43)
[Address] EAT @explorer.exe (InternalGetTcpTableWithOwnerPid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900D6B)
[Address] EAT @explorer.exe (InternalGetTunnelPhysicalAdapter) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F6328)
[Address] EAT @explorer.exe (InternalGetUdp6TableWithOwnerModule) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900BC8)
[Address] EAT @explorer.exe (InternalGetUdp6TableWithOwnerPid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900BF0)
[Address] EAT @explorer.exe (InternalGetUdpTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900C87)
[Address] EAT @explorer.exe (InternalGetUdpTableEx) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900C62)
[Address] EAT @explorer.exe (InternalGetUdpTableWithOwnerModule) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900C15)
[Address] EAT @explorer.exe (InternalGetUdpTableWithOwnerPid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900C3D)
[Address] EAT @explorer.exe (InternalGetUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729060FE)
[Address] EAT @explorer.exe (InternalGetUnicastIpAddressTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729060C3)
[Address] EAT @explorer.exe (InternalSetIfEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900BAE)
[Address] EAT @explorer.exe (InternalSetIpForwardEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900AEE)
[Address] EAT @explorer.exe (InternalSetIpForwardEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729068BC)
[Address] EAT @explorer.exe (InternalSetIpInterfaceEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72908164)
[Address] EAT @explorer.exe (InternalSetIpNetEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900B40)
[Address] EAT @explorer.exe (InternalSetIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907144)
[Address] EAT @explorer.exe (InternalSetIpStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900B92)
[Address] EAT @explorer.exe (InternalSetTcpEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72900AD4)
[Address] EAT @explorer.exe (InternalSetTeredoPort) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72908505)
[Address] EAT @explorer.exe (InternalSetUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729060E1)
[Address] EAT @explorer.exe (IpReleaseAddress) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729011D1)
[Address] EAT @explorer.exe (IpRenewAddress) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729010FB)
[Address] EAT @explorer.exe (LookupPersistentTcpPortReservation) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72903456)
[Address] EAT @explorer.exe (LookupPersistentUdpPortReservation) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72903431)
[Address] EAT @explorer.exe (NTPTimeToNTFileTime) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290244D)
[Address] EAT @explorer.exe (NTTimeToNTPTime) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729024C8)
[Address] EAT @explorer.exe (NhGetGuidFromInterfaceName) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FFBBE)
[Address] EAT @explorer.exe (NhGetInterfaceDescriptionFromGuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FFB00)
[Address] EAT @explorer.exe (NhGetInterfaceNameFromDeviceGuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F90CC)
[Address] EAT @explorer.exe (NhGetInterfaceNameFromGuid) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F90CC)
[Address] EAT @explorer.exe (NhpAllocateAndGetInterfaceInfoFromStack) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FFD7C)
[Address] EAT @explorer.exe (NotifyAddrChange) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FEB39)
[Address] EAT @explorer.exe (NotifyIpInterfaceChange) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F55D3)
[Address] EAT @explorer.exe (NotifyRouteChange) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901425)
[Address] EAT @explorer.exe (NotifyRouteChange2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FBED6)
[Address] EAT @explorer.exe (NotifyStableUnicastIpAddressTable) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905992)
[Address] EAT @explorer.exe (NotifyTeredoPortChange) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729085BD)
[Address] EAT @explorer.exe (NotifyUnicastIpAddressChange) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728F578A)
[Address] EAT @explorer.exe (ParseNetworkString) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FE6F1)
[Address] EAT @explorer.exe (ResolveIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FC180)
[Address] EAT @explorer.exe (ResolveNeighbor) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729018AB)
[Address] EAT @explorer.exe (RestoreMediaSense) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901056)
[Address] EAT @explorer.exe (SendARP) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901794)
[Address] EAT @explorer.exe (SetAdapterIpAddress) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290094D)
[Address] EAT @explorer.exe (SetCurrentThreadCompartmentId) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907FD9)
[Address] EAT @explorer.exe (SetIfEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290013A)
[Address] EAT @explorer.exe (SetIpForwardEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290241D)
[Address] EAT @explorer.exe (SetIpForwardEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72906E55)
[Address] EAT @explorer.exe (SetIpInterfaceEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290814C)
[Address] EAT @explorer.exe (SetIpNetEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290232F)
[Address] EAT @explorer.exe (SetIpNetEntry2) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290760D)
[Address] EAT @explorer.exe (SetIpStatistics) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72902255)
[Address] EAT @explorer.exe (SetIpStatisticsEx) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901AF6)
[Address] EAT @explorer.exe (SetIpTTL) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901A89)
[Address] EAT @explorer.exe (SetNetworkInformation) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907DF7)
[Address] EAT @explorer.exe (SetPerTcp6ConnectionEStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FA5F0)
[Address] EAT @explorer.exe (SetPerTcp6ConnectionStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290388A)
[Address] EAT @explorer.exe (SetPerTcpConnectionEStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x728FA55A)
[Address] EAT @explorer.exe (SetPerTcpConnectionStats) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729039D7)
[Address] EAT @explorer.exe (SetSessionCompartmentId) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72907FA4)
[Address] EAT @explorer.exe (SetTcpEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290488B)
[Address] EAT @explorer.exe (SetUnicastIpAddressEntry) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x7290607B)
[Address] EAT @explorer.exe (UnenableRouter) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72901060)
[Address] EAT @explorer.exe (do_echo_rep) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729027BB)
[Address] EAT @explorer.exe (do_echo_req) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729029AD)
[Address] EAT @explorer.exe (if_indextoname) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x729051BD)
[Address] EAT @explorer.exe (if_nametoindex) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72905202)
[Address] EAT @explorer.exe (register_icmp) : WINNSI.DLL -> HOOKED (C:\Windows\SYSTEM32\IPHLPAPI.DLL @ 0x72902A8A)
[Address] EAT @explorer.exe (AssocCreate) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F371A6)
[Address] EAT @explorer.exe (AssocGetPerceivedType) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3829F)
[Address] EAT @explorer.exe (AssocIsDangerous) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F49DED)
[Address] EAT @explorer.exe (AssocQueryKeyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4AFBF)
[Address] EAT @explorer.exe (AssocQueryKeyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F36F42)
[Address] EAT @explorer.exe (AssocQueryStringA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4B20C)
[Address] EAT @explorer.exe (AssocQueryStringByKeyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4B077)
[Address] EAT @explorer.exe (AssocQueryStringByKeyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41980)
[Address] EAT @explorer.exe (AssocQueryStringW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3FBFF)
[Address] EAT @explorer.exe (ChrCmpIA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47137)
[Address] EAT @explorer.exe (ChrCmpIW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47126)
[Address] EAT @explorer.exe (ColorAdjustLuma) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4C3F3)
[Address] EAT @explorer.exe (ColorHLSToRGB) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3B787)
[Address] EAT @explorer.exe (ColorRGBToHLS) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3B6CD)
[Address] EAT @explorer.exe (ConnectToConnectionPoint) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4180D)
[Address] EAT @explorer.exe (DelayLoadFailureHook) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4C56B)
[Address] EAT @explorer.exe (DllGetClassObject) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F5958F)
[Address] EAT @explorer.exe (DllGetVersion) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F43B1B)
[Address] EAT @explorer.exe (GUIDFromStringW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F33EE2)
[Address] EAT @explorer.exe (GetAcceptLanguagesA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46A2D)
[Address] EAT @explorer.exe (GetAcceptLanguagesW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41ECB)
[Address] EAT @explorer.exe (GetMenuPosFromID) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41DCD)
[Address] EAT @explorer.exe (HashData) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46A1C)
[Address] EAT @explorer.exe (IStream_Copy) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3FE03)
[Address] EAT @explorer.exe (IStream_Read) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F416F3)
[Address] EAT @explorer.exe (IStream_ReadPidl) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3F70E)
[Address] EAT @explorer.exe (IStream_ReadStr) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35E95)
[Address] EAT @explorer.exe (IStream_Reset) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37DC3)
[Address] EAT @explorer.exe (IStream_Size) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3FDCC)
[Address] EAT @explorer.exe (IStream_Write) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37DB2)
[Address] EAT @explorer.exe (IStream_WritePidl) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F5A935)
[Address] EAT @explorer.exe (IStream_WriteStr) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F404EB)
[Address] EAT @explorer.exe (IUnknown_AtomicRelease) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47197)
[Address] EAT @explorer.exe (IUnknown_Exec) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F38D8F)
[Address] EAT @explorer.exe (IUnknown_GetSite) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41EDC)
[Address] EAT @explorer.exe (IUnknown_GetWindow) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35C9B)
[Address] EAT @explorer.exe (IUnknown_QueryService) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37D31)
[Address] EAT @explorer.exe (IUnknown_QueryStatus) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F57DCD)
[Address] EAT @explorer.exe (IUnknown_Set) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35D7F)
[Address] EAT @explorer.exe (IUnknown_SetSite) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37D42)
[Address] EAT @explorer.exe (IntlStrEqWorkerA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46F28)
[Address] EAT @explorer.exe (IntlStrEqWorkerW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46F17)
[Address] EAT @explorer.exe (IsCharSpaceA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46B81)
[Address] EAT @explorer.exe (IsCharSpaceW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35D90)
[Address] EAT @explorer.exe (IsInternetESCEnabled) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46A11)
[Address] EAT @explorer.exe (IsOS) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F38C5D)
[Address] EAT @explorer.exe (MLFreeLibrary) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F564B9)
[Address] EAT @explorer.exe (MLLoadLibraryA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F564F5)
[Address] EAT @explorer.exe (MLLoadLibraryW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F5653D)
[Address] EAT @explorer.exe (ParseURLA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46A00)
[Address] EAT @explorer.exe (ParseURLW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3B8E9)
[Address] EAT @explorer.exe (PathAddBackslashA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C09)
[Address] EAT @explorer.exe (PathAddBackslashW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F377B0)
[Address] EAT @explorer.exe (PathAddExtensionA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46DA1)
[Address] EAT @explorer.exe (PathAddExtensionW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37A9E)
[Address] EAT @explorer.exe (PathAppendA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D90)
[Address] EAT @explorer.exe (PathAppendW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37E3F)
[Address] EAT @explorer.exe (PathBuildRootA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47159)
[Address] EAT @explorer.exe (PathBuildRootW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4716A)
[Address] EAT @explorer.exe (PathCanonicalizeA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D7F)
[Address] EAT @explorer.exe (PathCanonicalizeW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F38CBC)
[Address] EAT @explorer.exe (PathCombineA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C3C)
[Address] EAT @explorer.exe (PathCombineW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3779F)
[Address] EAT @explorer.exe (PathCommonPrefixA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E8F)
[Address] EAT @explorer.exe (PathCommonPrefixW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E7E)
[Address] EAT @explorer.exe (PathCompactPathA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47DEA)
[Address] EAT @explorer.exe (PathCompactPathExA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47C40)
[Address] EAT @explorer.exe (PathCompactPathExW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F40448)
[Address] EAT @explorer.exe (PathCompactPathW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4B6CC)
[Address] EAT @explorer.exe (PathCreateFromUrlA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F469EF)
[Address] EAT @explorer.exe (PathCreateFromUrlAlloc) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F469DE)
[Address] EAT @explorer.exe (PathCreateFromUrlW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F36E0B)
[Address] EAT @explorer.exe (PathFileExistsA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46CE6)
[Address] EAT @explorer.exe (PathFileExistsAndAttributesW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37AC0)
[Address] EAT @explorer.exe (PathFileExistsW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F36F20)
[Address] EAT @explorer.exe (PathFindExtensionA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D19)
[Address] EAT @explorer.exe (PathFindExtensionW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F357C8)
[Address] EAT @explorer.exe (PathFindFileNameA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46CD5)
[Address] EAT @explorer.exe (PathFindFileNameW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F357B7)
[Address] EAT @explorer.exe (PathFindNextComponentA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46BE7)
[Address] EAT @explorer.exe (PathFindNextComponentW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37E61)
[Address] EAT @explorer.exe (PathFindOnPathA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4846C)
[Address] EAT @explorer.exe (PathFindOnPathW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F40775)
[Address] EAT @explorer.exe (PathFindSuffixArrayA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F483B7)
[Address] EAT @explorer.exe (PathFindSuffixArrayW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F38D11)
[Address] EAT @explorer.exe (PathGetArgsA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4688B)
[Address] EAT @explorer.exe (PathGetArgsW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F43B0A)
[Address] EAT @explorer.exe (PathGetCharTypeA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F468AC)
[Address] EAT @explorer.exe (PathGetCharTypeW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35ED2)
[Address] EAT @explorer.exe (PathGetDriveNumberA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E3A)
[Address] EAT @explorer.exe (PathGetDriveNumberW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35795)
[Address] EAT @explorer.exe (PathIsContentTypeA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47AA9)
[Address] EAT @explorer.exe (PathIsContentTypeW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3FE28)
[Address] EAT @explorer.exe (PathIsDirectoryA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F48279)
[Address] EAT @explorer.exe (PathIsDirectoryEmptyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F48187)
[Address] EAT @explorer.exe (PathIsDirectoryEmptyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4BA25)
[Address] EAT @explorer.exe (PathIsDirectoryW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37851)
[Address] EAT @explorer.exe (PathIsFileSpecA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E4B)
[Address] EAT @explorer.exe (PathIsFileSpecW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37AAF)
[Address] EAT @explorer.exe (PathIsLFNFileSpecA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46DD4)
[Address] EAT @explorer.exe (PathIsLFNFileSpecW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46DC3)
[Address] EAT @explorer.exe (PathIsNetworkPathA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4717B)
[Address] EAT @explorer.exe (PathIsNetworkPathW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37C86)
[Address] EAT @explorer.exe (PathIsPrefixA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E6D)
[Address] EAT @explorer.exe (PathIsPrefixW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E5C)
[Address] EAT @explorer.exe (PathIsRelativeA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E29)
[Address] EAT @explorer.exe (PathIsRelativeW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F36F31)
[Address] EAT @explorer.exe (PathIsRootA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D6E)
[Address] EAT @explorer.exe (PathIsRootW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F38CAB)
[Address] EAT @explorer.exe (PathIsSameRootA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46DF6)
[Address] EAT @explorer.exe (PathIsSameRootW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46DE5)
[Address] EAT @explorer.exe (PathIsSystemFolderA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F477A6)
[Address] EAT @explorer.exe (PathIsSystemFolderW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4B549)
[Address] EAT @explorer.exe (PathIsUNCA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C1A)
[Address] EAT @explorer.exe (PathIsUNCServerA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46CF7)
[Address] EAT @explorer.exe (PathIsUNCServerShareA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D08)
[Address] EAT @explorer.exe (PathIsUNCServerShareW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37B7A)
[Address] EAT @explorer.exe (PathIsUNCServerW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37B69)
[Address] EAT @explorer.exe (PathIsUNCW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35784)
[Address] EAT @explorer.exe (PathIsURLA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F469CD)
[Address] EAT @explorer.exe (PathIsURLW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F36DFA)
[Address] EAT @explorer.exe (PathMakePrettyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F48B6E)
[Address] EAT @explorer.exe (PathMakePrettyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3FF0A)
[Address] EAT @explorer.exe (PathMakeSystemFolderA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47822)
[Address] EAT @explorer.exe (PathMakeSystemFolderW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F36059)
[Address] EAT @explorer.exe (PathMatchSpecA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C80)
[Address] EAT @explorer.exe (PathMatchSpecExA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C5E)
[Address] EAT @explorer.exe (PathMatchSpecExW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F40645)
[Address] EAT @explorer.exe (PathMatchSpecW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C6F)
[Address] EAT @explorer.exe (PathParseIconLocationA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46CC4)
[Address] EAT @explorer.exe (PathParseIconLocationW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37BF5)
[Address] EAT @explorer.exe (PathQuoteSpacesA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46CA2)
[Address] EAT @explorer.exe (PathQuoteSpacesW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F38D5B)
[Address] EAT @explorer.exe (PathRelativePathToA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46BF8)
[Address] EAT @explorer.exe (PathRelativePathToW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F43AC6)
[Address] EAT @explorer.exe (PathRemoveArgsA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F48B40)
[Address] EAT @explorer.exe (PathRemoveArgsW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3A4F7)
[Address] EAT @explorer.exe (PathRemoveBackslashA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46DB2)
[Address] EAT @explorer.exe (PathRemoveBackslashW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F36E4F)
[Address] EAT @explorer.exe (PathRemoveBlanksA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C91)
[Address] EAT @explorer.exe (PathRemoveBlanksW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3776C)
[Address] EAT @explorer.exe (PathRemoveExtensionA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D5D)
[Address] EAT @explorer.exe (PathRemoveExtensionW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37CED)
[Address] EAT @explorer.exe (PathRemoveFileSpecA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C2B)
[Address] EAT @explorer.exe (PathRemoveFileSpecW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35C1B)
[Address] EAT @explorer.exe (PathRenameExtensionA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D4C)
[Address] EAT @explorer.exe (PathRenameExtensionW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D3B)
[Address] EAT @explorer.exe (PathSearchAndQualifyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4687A)
[Address] EAT @explorer.exe (PathSearchAndQualifyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41AE9)
[Address] EAT @explorer.exe (PathSetDlgItemPathA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F47B3D)
[Address] EAT @explorer.exe (PathSetDlgItemPathW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4B5C7)
[Address] EAT @explorer.exe (PathSkipRootA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E07)
[Address] EAT @explorer.exe (PathSkipRootW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37E50)
[Address] EAT @explorer.exe (PathStripPathA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46E18)
[Address] EAT @explorer.exe (PathStripPathW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37B8B)
[Address] EAT @explorer.exe (PathStripToRootA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46D2A)
[Address] EAT @explorer.exe (PathStripToRootW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37CFE)
[Address] EAT @explorer.exe (PathUnExpandEnvStringsA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46C4D)
[Address] EAT @explorer.exe (PathUnExpandEnvStringsW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41AD8)
[Address] EAT @explorer.exe (PathUndecorateA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F476F8)
[Address] EAT @explorer.exe (PathUndecorateW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35EFE)
[Address] EAT @explorer.exe (PathUnmakeSystemFolderA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F477E4)
[Address] EAT @explorer.exe (PathUnmakeSystemFolderW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4B588)
[Address] EAT @explorer.exe (PathUnquoteSpacesA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F46CB3)
[Address] EAT @explorer.exe (PathUnquoteSpacesW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3777D)
[Address] EAT @explorer.exe (QISearch) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3566B)
[Address] EAT @explorer.exe (SHAllocShared) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41BF8)
[Address] EAT @explorer.exe (SHAnsiToAnsi) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4731E)
[Address] EAT @explorer.exe (SHAnsiToUnicode) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4004B)
[Address] EAT @explorer.exe (SHAutoComplete) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3EDC7)
[Address] EAT @explorer.exe (SHCopyKeyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F472FC)
[Address] EAT @explorer.exe (SHCopyKeyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F40097)
[Address] EAT @explorer.exe (SHCreateMemStream) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37D97)
[Address] EAT @explorer.exe (SHCreateShellPalette) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41B15)
[Address] EAT @explorer.exe (SHCreateStreamOnFileA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F471DB)
[Address] EAT @explorer.exe (SHCreateStreamOnFileEx) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41EB0)
[Address] EAT @explorer.exe (SHCreateStreamOnFileW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F35EE3)
[Address] EAT @explorer.exe (SHCreateStreamWrapper) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F33EEE)
[Address] EAT @explorer.exe (SHCreateThread) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4153E)
[Address] EAT @explorer.exe (SHCreateThreadRef) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37A6D)
[Address] EAT @explorer.exe (SHCreateThreadWithHandle) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37C06)
[Address] EAT @explorer.exe (SHDeleteEmptyKeyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F471FD)
[Address] EAT @explorer.exe (SHDeleteEmptyKeyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F471EC)
[Address] EAT @explorer.exe (SHDeleteKeyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3FE7F)
[Address] EAT @explorer.exe (SHDeleteKeyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F38C86)
[Address] EAT @explorer.exe (SHDeleteOrphanKeyA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F5A7A5)
[Address] EAT @explorer.exe (SHDeleteOrphanKeyW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F5A755)
[Address] EAT @explorer.exe (SHDeleteValueA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4720E)
[Address] EAT @explorer.exe (SHDeleteValueW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F38D00)
[Address] EAT @explorer.exe (SHEnumKeyExA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F472DA)
[Address] EAT @explorer.exe (SHEnumKeyExW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F472C9)
[Address] EAT @explorer.exe (SHEnumValueA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F472B8)
[Address] EAT @explorer.exe (SHEnumValueW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3FDE8)
[Address] EAT @explorer.exe (SHFormatDateTimeA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4BCC7)
[Address] EAT @explorer.exe (SHFormatDateTimeW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4BD3F)
[Address] EAT @explorer.exe (SHFreeShared) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41C09)
[Address] EAT @explorer.exe (SHGetInverseCMAP) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F4D3B5)
[Address] EAT @explorer.exe (SHGetThreadRef) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F40591)
[Address] EAT @explorer.exe (SHGetValueA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F41BDD)
[Address] EAT @explorer.exe (SHGetValueW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37CBA)
[Address] EAT @explorer.exe (SHGetViewStatePropertyBag) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F39323)
[Address] EAT @explorer.exe (SHIsChildOrSelf) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F3590A)
[Address] EAT @explorer.exe (SHIsLowMemoryMachine) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F57E50)
[Address] EAT @explorer.exe (SHLoadIndirectString) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F37D0F)
[Address] EAT @explorer.exe (SHLockShared) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F5AEC2)
[Address] EAT @explorer.exe (SHMessageBoxCheckA) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F57258)
[Address] EAT @explorer.exe (SHMessageBoxCheckW) : WS2_32.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0x75F57387)


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 58 hostů