PC ne veut plus s'éteindre, il redémarre !
Résolu
Supertim38
Messages postés
22
Date d'inscription
Statut
Membre
Dernière intervention
-
Supertim38 Messages postés 22 Date d'inscription Statut Membre Dernière intervention -
Supertim38 Messages postés 22 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
Ayant actuellement un PC assez puissant (AMD Phenom II X4 955 Processor 3.25GHZ, 3Go de Ram avec Windows 8), j'ai chopé une merde en voulant installer minecraft sur mediafire
et depuis je n'arrive plus a éteindre mon pc car quand je clique sur "arrêter le système", mon ordi redémarre d'une manière assez bizarre. Apres ça l'ordi m'affiche un message du genre *Erreur lors de l'arrêt ce qui a entraîné le redémarrage du pc*
J'ai donc lancé un Scan :
-D'avast
-De Spybot
-De CCleaner
-De MalWareByts
(et je crois que c'est tout)
Ensuite, ils avaient tous détecté un truc d'anormal (Avast a détecte un Rootkit) et j'ai tout supprimé. J'ai actuellement besoin de votre aide. Aidez Moi SVP !!!!!!!
Ayant actuellement un PC assez puissant (AMD Phenom II X4 955 Processor 3.25GHZ, 3Go de Ram avec Windows 8), j'ai chopé une merde en voulant installer minecraft sur mediafire
et depuis je n'arrive plus a éteindre mon pc car quand je clique sur "arrêter le système", mon ordi redémarre d'une manière assez bizarre. Apres ça l'ordi m'affiche un message du genre *Erreur lors de l'arrêt ce qui a entraîné le redémarrage du pc*
J'ai donc lancé un Scan :
-D'avast
-De Spybot
-De CCleaner
-De MalWareByts
(et je crois que c'est tout)
Ensuite, ils avaient tous détecté un truc d'anormal (Avast a détecte un Rootkit) et j'ai tout supprimé. J'ai actuellement besoin de votre aide. Aidez Moi SVP !!!!!!!
A voir également:
- PC ne veut plus s'éteindre, il redémarre !
- Raccourci eteindre pc - Guide
- Reinitialiser pc - Guide
- Éteindre pc à distance - Guide
- Test performance pc - Guide
- Pc lent - Guide
16 réponses
Hello
Il vaudrait mieux que je prenne le relais
@Supertim utilise pas Adwcleaner
On va utiliser Roguekiller
* Télécharge sur le bureau RogueKiller
* Quitte tous tes programmes en cours.
* Sous Vista/Seven et windows 8 , clique droit -> lancer en tant qu'administrateur
* Sinon lance simplement RogueKiller.exe
* Patiente pendant le pre-scan, puis clique sur le bouton Scan
* Un rapport RKreport.txt a du se créer sur le bureau, poste-le.
Note : Si le programme a été bloqué, ne pas hésiter à essayer plusieurs fois.
Il vaudrait mieux que je prenne le relais
@Supertim utilise pas Adwcleaner
On va utiliser Roguekiller
* Télécharge sur le bureau RogueKiller
* Quitte tous tes programmes en cours.
* Sous Vista/Seven et windows 8 , clique droit -> lancer en tant qu'administrateur
* Sinon lance simplement RogueKiller.exe
* Patiente pendant le pre-scan, puis clique sur le bouton Scan
* Un rapport RKreport.txt a du se créer sur le bureau, poste-le.
Note : Si le programme a été bloqué, ne pas hésiter à essayer plusieurs fois.
Supertim38
Messages postés
22
Date d'inscription
Statut
Membre
Dernière intervention
1
RogueKiller est en train de scanner
avest
Messages postés
87
Date d'inscription
Statut
Membre
Dernière intervention
7
t'as essayer AdwCleaner ( d'Xplode )
Supertim38
Messages postés
22
Date d'inscription
Statut
Membre
Dernière intervention
1
Je vous remercie vraiment de votre présence, vous me sauvez la vie
avest
Messages postés
87
Date d'inscription
Statut
Membre
Dernière intervention
7
qui moi
Supertim38
Messages postés
22
Date d'inscription
Statut
Membre
Dernière intervention
1
ca a bientot terminé le scan
Ok passe à la suppression
* Quitte tous tes programmes en cours
* Sous Vista/Seven , clique droit -> lancer en tant qu'administrateur
* Sinon lance simplement RogueKiller.exe
* Patiente pendant le pre-scan, clique sur Scan
* Vérifie que tous les éléments sont cochés puis clique sur Suppression
* Poste le rapport RKreport.txt présent sur le bureau.
* Quitte tous tes programmes en cours
* Sous Vista/Seven , clique droit -> lancer en tant qu'administrateur
* Sinon lance simplement RogueKiller.exe
* Patiente pendant le pre-scan, clique sur Scan
* Vérifie que tous les éléments sont cochés puis clique sur Suppression
* Poste le rapport RKreport.txt présent sur le bureau.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Ok bien passons au diagnostic
Désinstalles Spybot
* Télécharge ZHPDiag (de Nicolas Coolman)
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html ou https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
* Au cas où le premier lien ne marcherai pas, clique sur celui de dessous
ftp://zebulon.fr/ZHPDiag2.exe
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
* Surtout, n'oublie pas d'installer son icône sur le bureau l'icône est en forme de parchemin
https://www.cjoint.com/13sp/CIvuQfap3YY_zhpdiag.png
* A l'ouverture du logiciel il te sera proposé deux options "rechercher" et "configurer"
* Cliques sur configurer
* Options puis tous
* Clique sur l'icône représentant une loupe + (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Pour héberger le rapport, rends toi sur cjoint.com
* Clique sur choisissez un fichier va chercher le rapport dans ton PC.
* Le rapport est sauvegardé dans C:\ZHP\ZHPDiag.txt
* Une fois le rapport trouvé, sélectionne le, et clique sur Ouvrir
* Choisis le type de diffusion(je te conseille privée 4 jours il sera détruit)
* Puis cliques sur créer le lien cjoint
* Une fois que tu auras obtenu le lien copies colle dans ta prochaine réponse
* Pour t'aider http://www.pc-infopratique.com/forum-informatique/tutoriel-heberger-rapport-vt-67934.html
Désinstalles Spybot
* Télécharge ZHPDiag (de Nicolas Coolman)
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html ou https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
* Au cas où le premier lien ne marcherai pas, clique sur celui de dessous
ftp://zebulon.fr/ZHPDiag2.exe
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
* Surtout, n'oublie pas d'installer son icône sur le bureau l'icône est en forme de parchemin
https://www.cjoint.com/13sp/CIvuQfap3YY_zhpdiag.png
* A l'ouverture du logiciel il te sera proposé deux options "rechercher" et "configurer"
* Cliques sur configurer
* Options puis tous
* Clique sur l'icône représentant une loupe + (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Pour héberger le rapport, rends toi sur cjoint.com
* Clique sur choisissez un fichier va chercher le rapport dans ton PC.
* Le rapport est sauvegardé dans C:\ZHP\ZHPDiag.txt
* Une fois le rapport trouvé, sélectionne le, et clique sur Ouvrir
* Choisis le type de diffusion(je te conseille privée 4 jours il sera détruit)
* Puis cliques sur créer le lien cjoint
* Une fois que tu auras obtenu le lien copies colle dans ta prochaine réponse
* Pour t'aider http://www.pc-infopratique.com/forum-informatique/tutoriel-heberger-rapport-vt-67934.html
Hello
Pour désactiver smartscreen
=> https://forums.commentcamarche.net/forum/affich-37641559-desactiver-le-smartscreen-sous-windows
Pour désactiver smartscreen
=> https://forums.commentcamarche.net/forum/affich-37641559-desactiver-le-smartscreen-sous-windows
Si tu fais un nouveau raccourcis avec la commande:
Ca donne quoi?
%SystemRoot%\System32\shutdown.exe -s -t 0
Ca donne quoi?
ca me met que Windows SmartScreen a bloqué l'utilisation de ce logiciel
Hello
Tu peux désactiver smartscreen
=> https://forums.commentcamarche.net/forum/affich-37641559-desactiver-le-smartscreen-sous-windows
Tu peux désactiver smartscreen
=> https://forums.commentcamarche.net/forum/affich-37641559-desactiver-le-smartscreen-sous-windows
voici la suppression :
RogueKiller V8.7.1 [Oct 3 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.adlice.com/forum/
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows 8 (6.2.9200 ) 32 bits version
Demarrage : Mode normal
Utilisateur : Timothe [Droits d'admin]
Mode : Suppression -- Date : 10/09/2013 16:48:46
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 3 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REMPLACÉ (2)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0)
¤¤¤ Tâches planifiées : 0 ¤¤¤
¤¤¤ Entrées Startup : 0 ¤¤¤
¤¤¤ Navigateurs web : 1 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver : [CHARGE] ¤¤¤
[Address] IAT @explorer.exe (CoTaskMemFree) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A73700)
[Address] IAT @explorer.exe (CoInitializeEx) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A89DF5)
[Address] IAT @explorer.exe (CoUninitialize) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8963D)
[Address] IAT @explorer.exe (CreateStreamOnHGlobal) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AB97D7)
[Address] IAT @explorer.exe (CoGetApartmentType) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8A9CD)
[Address] IAT @explorer.exe (CoWaitForMultipleHandles) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AB8B73)
[Address] IAT @explorer.exe (CoFreeUnusedLibraries) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC2329)
[Address] IAT @explorer.exe (CoEnableCallCancellation) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A96635)
[Address] IAT @explorer.exe (CoDisableCallCancellation) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A9666B)
[Address] IAT @explorer.exe (CoCancelCall) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75B1E323)
[Address] IAT @explorer.exe (StringFromGUID2) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8A428)
[Address] IAT @explorer.exe (PropVariantClear) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8AAF0)
[Address] IAT @explorer.exe (CoMarshalInterThreadInterfaceInStream) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75ABF6D4)
[Address] IAT @explorer.exe (CoReleaseMarshalData) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A996E2)
[Address] IAT @explorer.exe (CoCreateInstance) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8C859)
[Address] IAT @explorer.exe (CoRevokeClassObject) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC34F6)
[Address] IAT @explorer.exe (CoRegisterClassObject) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC4757)
[Address] IAT @explorer.exe (CoGetInterfaceAndReleaseStream) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75ABF684)
[Address] IAT @explorer.exe (CoGetMalloc) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A73838)
[Address] IAT @explorer.exe (CoCreateFreeThreadedMarshaler) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8D270)
[Address] IAT @explorer.exe (CoTaskMemAlloc) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A737D7)
[Address] IAT @explorer.exe (CLSIDFromString) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AB8056)
[Address] IAT @explorer.exe (CoTaskMemRealloc) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8AACA)
[Address] IAT @explorer.exe (InterlockedExchange) : api-ms-win-core-interlocked-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CEF9)
[Address] IAT @explorer.exe (InterlockedIncrement) : api-ms-win-core-interlocked-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CE9B)
[Address] IAT @explorer.exe (InterlockedCompareExchange) : api-ms-win-core-interlocked-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CF0C)
[Address] IAT @explorer.exe (InterlockedDecrement) : api-ms-win-core-interlocked-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CE8A)
[Address] IAT @explorer.exe (RegCreateKeyExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7527B580)
[Address] IAT @explorer.exe (RegEnumValueW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526C5C4)
[Address] IAT @explorer.exe (RegQueryInfoKeyW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526C171)
[Address] IAT @explorer.exe (RegQueryValueExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525FBB6)
[Address] IAT @explorer.exe (RegCloseKey) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525F832)
[Address] IAT @explorer.exe (RegOpenKeyExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525F625)
[Address] IAT @explorer.exe (RegGetValueW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526296A)
[Address] IAT @explorer.exe (RegOpenCurrentUser) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752663B3)
[Address] IAT @explorer.exe (RegEnumKeyExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526AA19)
[Address] IAT @explorer.exe (RegDeleteValueW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75271401)
[Address] IAT @explorer.exe (RegSetValueExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7527B72B)
[Address] IAT @explorer.exe (OpenProcessToken) : api-ms-win-core-processthreads-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E647)
[Address] IAT @explorer.exe (OpenThreadToken) : api-ms-win-core-processthreads-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E612)
[Address] IAT @explorer.exe (CloseHandle) : api-ms-win-core-handle-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D140)
[Address] IAT @explorer.exe (DuplicateHandle) : api-ms-win-core-handle-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DA22)
[Address] IAT @explorer.exe (SetUnhandledExceptionFilter) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752770D7)
[Address] IAT @explorer.exe (SetErrorMode) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262EBF)
[Address] IAT @explorer.exe (GetLastError) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CEEF)
[Address] IAT @explorer.exe (RaiseException) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75261F9B)
[Address] IAT @explorer.exe (UnhandledExceptionFilter) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752E705F)
[Address] IAT @explorer.exe (WaitForSingleObject) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75252151)
[Address] IAT @explorer.exe (OpenMutexW) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526BACE)
[Address] IAT @explorer.exe (InitializeCriticalSectionEx) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752653BA)
[Address] IAT @explorer.exe (WaitForMultipleObjectsEx) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CFBE)
[Address] IAT @explorer.exe (SetEvent) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D08C)
[Address] IAT @explorer.exe (OpenEventW) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526229A)
[Address] IAT @explorer.exe (CreateEventW) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D997)
[Address] IAT @explorer.exe (ResetEvent) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D0B2)
[Address] IAT @explorer.exe (CreateMutexW) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75260EE1)
[Address] IAT @explorer.exe (ReleaseMutex) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75251005)
[Address] IAT @explorer.exe (Sleep) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75252284)
[Address] IAT @explorer.exe (CharNextW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526663E)
[Address] IAT @explorer.exe (CharUpperW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526695B)
[Address] IAT @explorer.exe (CharPrevW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75269AAC)
[Address] IAT @explorer.exe (CharLowerW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526E111)
[Address] IAT @explorer.exe (IsCharAlphaNumericW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526BDE7)
[Address] IAT @explorer.exe (HeapDestroy) : api-ms-win-core-heap-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752604F7)
[Address] IAT @explorer.exe (HeapSetInformation) : api-ms-win-core-heap-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526467B)
[Address] IAT @explorer.exe (GetProcessHeap) : api-ms-win-core-heap-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CEB1)
[Address] IAT @explorer.exe (WideCharToMultiByte) : api-ms-win-core-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75261CCD)
[Address] IAT @explorer.exe (MultiByteToWideChar) : api-ms-win-core-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75260C61)
[Address] IAT @explorer.exe (CompareStringW) : api-ms-win-core-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525EC17)
[Address] IAT @explorer.exe (CompareStringOrdinal) : api-ms-win-core-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75267E2F)
[Address] IAT @explorer.exe (FreeLibrary) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DD11)
[Address] IAT @explorer.exe (GetProcAddress) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525FCFE)
[Address] IAT @explorer.exe (LoadLibraryExW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526273E)
[Address] IAT @explorer.exe (LockResource) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D7DF)
[Address] IAT @explorer.exe (GetModuleHandleW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DC84)
[Address] IAT @explorer.exe (LoadResource) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752675B2)
[Address] IAT @explorer.exe (FindResourceExW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526748B)
[Address] IAT @explorer.exe (GetModuleFileNameW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E0AF)
[Address] IAT @explorer.exe (FreeLibraryAndExitThread) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E033)
[Address] IAT @explorer.exe (GetModuleHandleExW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752620DA)
[Address] IAT @explorer.exe (LoadStringW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75263BD1)
[Address] IAT @explorer.exe (GetModuleHandleA) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E3CA)
[Address] IAT @explorer.exe (GetCurrentDirectoryW) : api-ms-win-core-processenvironment-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752654B6)
[Address] IAT @explorer.exe (GetCommandLineW) : api-ms-win-core-processenvironment-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752653E2)
[Address] IAT @explorer.exe (SearchPathW) : api-ms-win-core-processenvironment-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AC406)
[Address] IAT @explorer.exe (ExpandEnvironmentStringsW) : api-ms-win-core-processenvironment-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525EDE9)
[Address] IAT @explorer.exe (CallNtPowerInformation) : api-ms-win-power-base-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\powrprof.dll @ 0x74E81DCC)
[Address] IAT @explorer.exe (GetPwrCapabilities) : api-ms-win-power-base-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\powrprof.dll @ 0x74E8367D)
[Address] IAT @explorer.exe (GetTokenInformation) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E773)
[Address] IAT @explorer.exe (GetSidSubAuthority) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75266446)
[Address] IAT @explorer.exe (CreateWellKnownSid) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75272A05)
[Address] IAT @explorer.exe (GetLengthSid) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E66F)
[Address] IAT @explorer.exe (IsValidSid) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E6D5)
[Address] IAT @explorer.exe (CopySid) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E688)
[Address] IAT @explorer.exe (GetSidSubAuthorityCount) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526645F)
[Address] IAT @explorer.exe (CheckTokenMembership) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75260329)
[Address] IAT @explorer.exe (PathCchAddExtension) : api-ms-win-core-path-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7528A8C1)
[Address] IAT @explorer.exe (PathCchCombine) : api-ms-win-core-path-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752686CF)
[Address] IAT @explorer.exe (PathCchAppend) : api-ms-win-core-path-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752711EC)
[Address] IAT @explorer.exe (GetLongPathNameW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75282C8D)
[Address] IAT @explorer.exe (ReadFile) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526384C)
[Address] IAT @explorer.exe (CreateFileW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752626CE)
[Address] IAT @explorer.exe (WriteFile) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DA7F)
[Address] IAT @explorer.exe (GetFileSize) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752602B9)
[Address] IAT @explorer.exe (FindClose) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75264A48)
[Address] IAT @explorer.exe (CompareFileTime) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75261648)
[Address] IAT @explorer.exe (DeleteFileW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526402F)
[Address] IAT @explorer.exe (FindNextFileW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75264B4D)
[Address] IAT @explorer.exe (FindFirstFileW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752649EA)
[Address] IAT @explorer.exe (GetFileAttributesW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262D76)
[Address] IAT @explorer.exe (GetTickCount64) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D21E)
[Address] IAT @explorer.exe (GetTickCount) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CE5B)
[Address] IAT @explorer.exe (GetProductInfo) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7527A3A1)
[Address] IAT @explorer.exe (GetVersionExW) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525EE47)
[Address] IAT @explorer.exe (GetSystemDirectoryW) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752643EE)
[Address] IAT @explorer.exe (GetSystemTimeAsFileTime) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D306)
[Address] IAT @explorer.exe (GetSystemTime) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525ECE5)
[Address] IAT @explorer.exe (GetWindowsDirectoryW) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752669A0)
[Address] IAT @explorer.exe (GetLocalTime) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525F145)
[Address] IAT @explorer.exe (GetDynamicTimeZoneInformation) : api-ms-win-core-timezone-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752A2B27)
[Address] IAT @explorer.exe (GetTimeZoneInformation) : api-ms-win-core-timezone-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752700B1)
[Address] IAT @explorer.exe (SystemTimeToFileTime) : api-ms-win-core-timezone-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262141)
[Address] IAT @explorer.exe (GetTimeFormatEx) : api-ms-win-core-datetime-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75272599)
[Address] IAT @explorer.exe (GetDateFormatEx) : api-ms-win-core-datetime-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752725C9)
[Address] IAT @explorer.exe (GetDateFormatW) : api-ms-win-core-datetime-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75282516)
[Address] IAT @explorer.exe (MapViewOfFile) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262BB9)
[Address] IAT @explorer.exe (VirtualAlloc) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D3DD)
[Address] IAT @explorer.exe (UnmapViewOfFile) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D2A3)
[Address] IAT @explorer.exe (CreateFileMappingW) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262D4F)
[Address] IAT @explorer.exe (VirtualFree) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DD5A)
[Address] IAT @explorer.exe (StrStrIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526F51E)
[Address] IAT @explorer.exe (StrTrimW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526DF67)
[Address] IAT @explorer.exe (StrCmpNICW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD843)
[Address] IAT @explorer.exe (StrCmpNW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752ACC6A)
[Address] IAT @explorer.exe (StrToIntW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752ADD73)
[Address] IAT @explorer.exe (StrChrW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD80F)
[Address] IAT @explorer.exe (StrCmpICW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD76D)
[Address] IAT @explorer.exe (StrCmpNIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526F7C6)
[Address] IAT @explorer.exe (StrRStrIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752A7664)
[Address] IAT @explorer.exe (StrCmpIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752843B9)
[Address] IAT @explorer.exe (SHLoadIndirectString) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526FB3B)
[Address] IAT @explorer.exe (StrChrIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75285923)
[Address] IAT @explorer.exe (StrCmpW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752ACED7)
[Address] IAT @explorer.exe (StrCmpCW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75266B0D)
[Address] IAT @explorer.exe (QISearch) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DEB8)
[Address] IAT @explorer.exe (StrCmpICA) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DF6D)
[Address] IAT @explorer.exe (GetUserDefaultUILanguage) : api-ms-win-core-localization-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526172A)
[Address] IAT @explorer.exe (CoRegisterMessageFilter) : api-ms-win-core-com-private-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AB91D2)
[Address] IAT @explorer.exe (SHRegGetUSValueW) : api-ms-win-core-registryuserspecific-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75280829)
[Address] IAT @explorer.exe (SHRegGetBoolUSValueW) : api-ms-win-core-registryuserspecific-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75287F7A)
[Address] IAT @explorer.exe (PathRemoveExtensionW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75271111)
[Address] IAT @explorer.exe (PathIsFileSpecW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752874FF)
[Address] IAT @explorer.exe (PathGetDriveNumberW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD9BF)
[Address] IAT @explorer.exe (PathRemoveFileSpecW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7528208C)
[Address] IAT @explorer.exe (PathCommonPrefixW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75270BFB)
[Address] IAT @explorer.exe (PathStripPathW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752B26F0)
[Address] IAT @explorer.exe (PathStripToRootW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7528224C)
[Address] IAT @explorer.exe (PathFindExtensionW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75269964)
[Address] IAT @explorer.exe (PathQuoteSpacesW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752A7B36)
[Address] IAT @explorer.exe (SHExpandEnvironmentStringsW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75269C9B)
[Address] IAT @explorer.exe (PathFileExistsW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75266B45)
[Address] IAT @explorer.exe (PathGetArgsW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752ABE61)
[Address] IAT @explorer.exe (PathRemoveBlanksW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7527A588)
[Address] IAT @explorer.exe (PathFindFileNameW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD899)
[Address] IAT @explorer.exe (PathCombineW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526E1CF)
[Address] IAT @explorer.exe (PathParseIconLocationW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752B2A5F)
[Address] IAT @explorer.exe (PathIsRootW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526E367)
[Address] IAT @explorer.exe (PathIsPrefixW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75270D6E)
[Address] IAT @explorer.exe (RegCreateKeyW) : api-ms-win-core-registry-l2-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\advapi32.dll @ 0x75BE879E)
[Inline] IAT @explorer.exe (UnhookWinEvent) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B15A0)
[Inline] IAT @explorer.exe (SetWinEventHook) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B1400)
[Inline] IAT @explorer.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B18A0)
[Inline] IAT @explorer.exe (UnhookWindowsHookEx) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B1A70)
[Address] IAT @explorer.exe (RoGetActivationFactory) : api-ms-win-core-winrt-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC76B7)
[Address] IAT @explorer.exe (WindowsDeleteString) : api-ms-win-core-winrt-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC1360)
[Address] IAT @explorer.exe (WindowsCreateString) : api-ms-win-core-winrt-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC15A1)
[Address] IAT @explorer.exe (WindowsGetStringRawBuffer) : api-ms-win-core-winrt-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC116D)
[Address] IAT @explorer.exe (GetLocaleInfoW) : api-ms-win-core-localization-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75263457)
[Address] IAT @explorer.exe (GetThreadUILanguage) : api-ms-win-core-localization-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75270B2D)
[Address] IAT @explorer.exe (QueryFullProcessImageNameW) : api-ms-win-core-psapi-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AE179)
[Address] IAT @explorer.exe (StopTraceW) : api-ms-win-eventing-controller-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752A2934)
[Address] IAT @explorer.exe (EnableTraceEx2) : api-ms-win-eventing-controller-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7529960E)
[Address] IAT @explorer.exe (StartTraceW) : api-ms-win-eventing-controller-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75299E6F)
[Address] IAT @explorer.exe (DeactivateActCtx) : api-ms-win-core-sidebyside-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526029B)
[Address] IAT @explorer.exe (ReleaseActCtx) : api-ms-win-core-sidebyside-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526025F)
[Address] IAT @explorer.exe (ActivateActCtx) : api-ms-win-core-sidebyside-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526027D)
[Address] IAT @explorer.exe (CreateActCtxW) : api-ms-win-core-sidebyside-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752667FF)
[Address] IAT @explorer.exe (ChangeTimerQueueTimer) : api-ms-win-core-threadpool-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E072)
[Address] IAT @explorer.exe (DeleteTimerQueueTimer) : api-ms-win-core-threadpool-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526056D)
[Address] IAT @explorer.exe (CreateTimerQueueTimer) : api-ms-win-core-threadpool-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752605BA)
[Address] IAT @explorer.exe (QueueUserWorkItem) : api-ms-win-core-threadpool-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E81C)
[Inline] EAT @explorer.exe (LdrLoadDll) : ntdll.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AA520)
[Inline] EAT @explorer.exe (LdrUnloadDll) : ntdll.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AA630)
[Inline] EAT @explorer.exe (SetWinEventHook) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B1400)
[Inline] EAT @explorer.exe (SetWindowsHookExA) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B16D0)
[Inline] EAT @explorer.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B18A0)
[Inline] EAT @explorer.exe (UnhookWinEvent) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B15A0)
[Inline] EAT @explorer.exe (UnhookWindowsHookEx) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B1A70)
[Inline] EAT @explorer.exe (ChangeServiceConfig2A) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AC370)
[Inline] EAT @explorer.exe (ChangeServiceConfig2W) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AC5C0)
[Inline] EAT @explorer.exe (ChangeServiceConfigA) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4ABB20)
[Inline] EAT @explorer.exe (ChangeServiceConfigW) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4ABF90)
[Inline] EAT @explorer.exe (CreateServiceA) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AACD0)
[Inline] EAT @explorer.exe (CreateServiceW) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AB1A0)
[Inline] EAT @explorer.exe (DeleteService) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AB8B0)
[Inline] EAT @explorer.exe (SetServiceObjectSecurity) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AE980)
[Inline] EAT @explorer.exe (??_7FlowLayout@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x539CB42B)
[Inline] EAT @explorer.exe (??_7HWNDElementProvider@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x5BD7B7D4)
[Inline] EAT @explorer.exe (??_7HWNDHostAccessible@DirectUI@@6BIAccIdentity@@@) : DUI70.dll -> HOOKED (Unknown @ 0x1584CDE8)
[Inline] EAT @explorer.exe (??_7HWNDHostAccessible@DirectUI@@6BIOleWindow@@@) : DUI70.dll -> HOOKED (Unknown @ 0x10DE90E2)
[Inline] EAT @explorer.exe (??_7HWNDHostAccessible@DirectUI@@6BIServiceProvider@@@) : DUI70.dll -> HOOKED (Unknown @ 0x1575CD30)
[Inline] EAT @explorer.exe (??_7HWNDHostClientAccessible@DirectUI@@6BIAccIdentity@@@) : DUI70.dll -> HOOKED (Unknown @ 0x1584CDE8)
[Inline] EAT @explorer.exe (??_7HWNDHostClientAccessible@DirectUI@@6BIOleWindow@@@) : DUI70.dll -> HOOKED (Unknown @ 0x10DE90E2)
[Inline] EAT @explorer.exe (??_7HWNDHostClientAccessible@DirectUI@@6BIServiceProvider@@@) : DUI70.dll -> HOOKED (Unknown @ 0x1575CD30)
[Inline] EAT @explorer.exe (??_7RefcountBase@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0xDFDEC2CC)
[Inline] EAT @explorer.exe (??_7XBaby@DirectUI@@6BHWNDElement@1@@) : DUI70.dll -> HOOKED (Unknown @ 0x722DB87B)
[Inline] EAT @explorer.exe (?UiaHostProviderFromHwnd@Schema@DirectUI@@2P6GJPAUHWND__@@PAPAUIRawElementProviderSimple@@@ZA) : DUI70.dll -> HOOKED (Unknown @ 0xCBF0DB75)
[Inline] EAT @explorer.exe (?s_pClassInfo@CCPushButton@DirectUI@@0PAUIClassInfo@2@A) : DUI70.dll -> HOOKED (Unknown @ 0x3B7F9630)
[Inline] EAT @explorer.exe (@Classes@TFiler@) : rtl150.bpl -> HOOKED (Unknown @ 0x3059296C)
[Inline] EAT @explorer.exe (@Classes@TReader@) : rtl150.bpl -> HOOKED (Unknown @ 0xB45933BC)
[Inline] EAT @explorer.exe (@Classes@TStreamWriter@) : rtl150.bpl -> HOOKED (Unknown @ 0x54599FB5)
[Inline] EAT @explorer.exe (@Comobj@TAutoObjectEvent@) : rtl150.bpl -> HOOKED (Unknown @ 0xDC5BB8A4)
[Inline] EAT @explorer.exe (@Msxml@IID_ISAXEntityResolver) : rtl150.bpl -> HOOKED (Unknown @ 0x1FB8BAB5)
[Inline] EAT @explorer.exe (@Oledb@DBOBJECT_DOMAIN) : rtl150.bpl -> HOOKED (Unknown @ 0x43E12FD7)
[Inline] EAT @explorer.exe (@Oledb@DBOBJECT_SCHEMA) : rtl150.bpl -> HOOKED (Unknown @ 0x43E12FC7)
[Inline] EAT @explorer.exe (@System@ExceptionClass) : rtl150.bpl -> HOOKED (Unknown @ 0xDD6A1039)
[Inline] EAT @explorer.exe (@Wincodec@CATID_WICFormatConverters) : rtl150.bpl -> HOOKED (Unknown @ 0x6490FC7F)
[Inline] EAT @explorer.exe (@Controls@TCustomTouchManager@) : vcl150.bpl -> HOOKED (Unknown @ 0x34772A44)
[Inline] EAT @explorer.exe (@Controls@TDockTree@) : vcl150.bpl -> HOOKED (Unknown @ 0xC0779121)
[Inline] EAT @explorer.exe (@Controls@TTouchManager@) : vcl150.bpl -> HOOKED (Unknown @ 0x34772FF8)
[Inline] EAT @explorer.exe (@Jclmath@Catalan) : Jcl150.bpl -> HOOKED (C:\WINDOWS\Explorer.EXE @ 0x00BF2040)
[Inline] EAT @explorer.exe (@Jclmath@Cbrt3) : Jcl150.bpl -> HOOKED (Unknown @ 0x90B1D717)
[Inline] EAT @explorer.exe (@Jclmath@LnPi) : Jcl150.bpl -> HOOKED (Unknown @ 0xCA671DA3)
[Inline] EAT @explorer.exe (@Jclmath@Log3) : Jcl150.bpl -> HOOKED (Unknown @ 0x84D25F65)
[Inline] EAT @explorer.exe (@Jclsimplexml@TJclSimpleXMLProps@) : Jcl150.bpl -> HOOKED (Unknown @ 0x4858BACA)
[Inline] EAT @explorer.exe (@Jclstructstorage@UnitVersioning) : Jcl150.bpl -> HOOKED (Unknown @ 0xF469DFA7)
[Inline] EAT @explorer.exe (@Jclwin32@RtdlNetGroupAdd) : Jcl150.bpl -> HOOKED (Unknown @ 0x3467D32D)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_AsymmetricSignatureDeformatter) : Jcl150.bpl -> HOOKED (Unknown @ 0x269C6902)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_Buffer) : Jcl150.bpl -> HOOKED (Unknown @ 0x8313E316)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_CaseInsensitiveComparer) : Jcl150.bpl -> HOOKED (Unknown @ 0x6C9E7D34)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_FileNotFoundException) : Jcl150.bpl -> HOOKED (Unknown @ 0xEB14FC04)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_JulianCalendar) : Jcl150.bpl -> HOOKED (Unknown @ 0x607DE6A9)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_PKCS1MaskGenerationMethod) : Jcl150.bpl -> HOOKED (Unknown @ 0x5E0E5459)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_ProgIdAttribute) : Jcl150.bpl -> HOOKED (Unknown @ 0x64693527)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_SHA384) : Jcl150.bpl -> HOOKED (Unknown @ 0x062DADDF)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_SoapDateTime) : Jcl150.bpl -> HOOKED (Unknown @ 0x886A688F)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID_IChannel) : Jcl150.bpl -> HOOKED (Unknown @ 0xB577C87E)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__BitConverter) : Jcl150.bpl -> HOOKED (Unknown @ 0xD97E4C5E)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__CryptographicException) : Jcl150.bpl -> HOOKED (Unknown @ 0xFA6AC5AF)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__CustomAttributeBuilder) : Jcl150.bpl -> HOOKED (Unknown @ 0x47E035A9)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__ExternalException) : Jcl150.bpl -> HOOKED (Unknown @ 0x70C9C911)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__IsolatedStorageFilePermission) : Jcl150.bpl -> HOOKED (Unknown @ 0x292E9B90)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__Pointer) : Jcl150.bpl -> HOOKED (Unknown @ 0x03125CDC)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__RegionInfo) : Jcl150.bpl -> HOOKED (Unknown @ 0xD76F9F58)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__SiteIdentityPermission) : Jcl150.bpl -> HOOKED (Unknown @ 0x4E9A9BCB)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__ThaiBuddhistCalendar) : Jcl150.bpl -> HOOKED (Unknown @ 0xA3E88D47)
[Inline] EAT @explorer.exe (@Aspbehavior@TRulerBehavior@) : vclie150.bpl -> HOOKED (Unknown @ 0x70A59DD1)
[Inline] EAT @explorer.exe (@Mshtml@CLASS_HTMLFieldSetElement) : vclie150.bpl -> HOOKED (Unknown @ 0x05861024)
[Inline] EAT @explorer.exe (@Mshtml@CLASS_HTMLLegendElement) : vclie150.bpl -> HOOKED (Unknown @ 0x05861044)
[Inline] EAT @explorer.exe (@Mshtml@CLASS_HTMLTableSection) : vclie150.bpl -> HOOKED (Unknown @ 0x05860D43)
[Inline] EAT @explorer.exe (@Mshtml@IID_IHTMLControlElement) : vclie150.bpl -> HOOKED (Unknown @ 0x0585FD25)
¤¤¤ Ruches Externes: ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Lecteurs de disque standard) - WDC WD10EARS-22Y5B1 ATA Device +++++
--- User ---
[MBR] 2a3b259a160ba98a2bd9ea9799328028
[BSP] a02df196dfb2fa1771cc5f942addb2ab : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953867 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Termine : << RKreport[0]_D_10092013_164846.txt >>
RKreport[0]_S_10092013_164324.txt
RogueKiller V8.7.1 [Oct 3 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.adlice.com/forum/
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows 8 (6.2.9200 ) 32 bits version
Demarrage : Mode normal
Utilisateur : Timothe [Droits d'admin]
Mode : Suppression -- Date : 10/09/2013 16:48:46
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 3 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REMPLACÉ (2)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0)
¤¤¤ Tâches planifiées : 0 ¤¤¤
¤¤¤ Entrées Startup : 0 ¤¤¤
¤¤¤ Navigateurs web : 1 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver : [CHARGE] ¤¤¤
[Address] IAT @explorer.exe (CoTaskMemFree) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A73700)
[Address] IAT @explorer.exe (CoInitializeEx) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A89DF5)
[Address] IAT @explorer.exe (CoUninitialize) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8963D)
[Address] IAT @explorer.exe (CreateStreamOnHGlobal) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AB97D7)
[Address] IAT @explorer.exe (CoGetApartmentType) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8A9CD)
[Address] IAT @explorer.exe (CoWaitForMultipleHandles) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AB8B73)
[Address] IAT @explorer.exe (CoFreeUnusedLibraries) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC2329)
[Address] IAT @explorer.exe (CoEnableCallCancellation) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A96635)
[Address] IAT @explorer.exe (CoDisableCallCancellation) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A9666B)
[Address] IAT @explorer.exe (CoCancelCall) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75B1E323)
[Address] IAT @explorer.exe (StringFromGUID2) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8A428)
[Address] IAT @explorer.exe (PropVariantClear) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8AAF0)
[Address] IAT @explorer.exe (CoMarshalInterThreadInterfaceInStream) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75ABF6D4)
[Address] IAT @explorer.exe (CoReleaseMarshalData) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A996E2)
[Address] IAT @explorer.exe (CoCreateInstance) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8C859)
[Address] IAT @explorer.exe (CoRevokeClassObject) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC34F6)
[Address] IAT @explorer.exe (CoRegisterClassObject) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC4757)
[Address] IAT @explorer.exe (CoGetInterfaceAndReleaseStream) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75ABF684)
[Address] IAT @explorer.exe (CoGetMalloc) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A73838)
[Address] IAT @explorer.exe (CoCreateFreeThreadedMarshaler) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8D270)
[Address] IAT @explorer.exe (CoTaskMemAlloc) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A737D7)
[Address] IAT @explorer.exe (CLSIDFromString) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AB8056)
[Address] IAT @explorer.exe (CoTaskMemRealloc) : api-ms-win-core-com-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75A8AACA)
[Address] IAT @explorer.exe (InterlockedExchange) : api-ms-win-core-interlocked-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CEF9)
[Address] IAT @explorer.exe (InterlockedIncrement) : api-ms-win-core-interlocked-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CE9B)
[Address] IAT @explorer.exe (InterlockedCompareExchange) : api-ms-win-core-interlocked-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CF0C)
[Address] IAT @explorer.exe (InterlockedDecrement) : api-ms-win-core-interlocked-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CE8A)
[Address] IAT @explorer.exe (RegCreateKeyExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7527B580)
[Address] IAT @explorer.exe (RegEnumValueW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526C5C4)
[Address] IAT @explorer.exe (RegQueryInfoKeyW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526C171)
[Address] IAT @explorer.exe (RegQueryValueExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525FBB6)
[Address] IAT @explorer.exe (RegCloseKey) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525F832)
[Address] IAT @explorer.exe (RegOpenKeyExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525F625)
[Address] IAT @explorer.exe (RegGetValueW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526296A)
[Address] IAT @explorer.exe (RegOpenCurrentUser) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752663B3)
[Address] IAT @explorer.exe (RegEnumKeyExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526AA19)
[Address] IAT @explorer.exe (RegDeleteValueW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75271401)
[Address] IAT @explorer.exe (RegSetValueExW) : api-ms-win-core-registry-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7527B72B)
[Address] IAT @explorer.exe (OpenProcessToken) : api-ms-win-core-processthreads-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E647)
[Address] IAT @explorer.exe (OpenThreadToken) : api-ms-win-core-processthreads-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E612)
[Address] IAT @explorer.exe (CloseHandle) : api-ms-win-core-handle-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D140)
[Address] IAT @explorer.exe (DuplicateHandle) : api-ms-win-core-handle-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DA22)
[Address] IAT @explorer.exe (SetUnhandledExceptionFilter) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752770D7)
[Address] IAT @explorer.exe (SetErrorMode) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262EBF)
[Address] IAT @explorer.exe (GetLastError) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CEEF)
[Address] IAT @explorer.exe (RaiseException) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75261F9B)
[Address] IAT @explorer.exe (UnhandledExceptionFilter) : api-ms-win-core-errorhandling-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752E705F)
[Address] IAT @explorer.exe (WaitForSingleObject) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75252151)
[Address] IAT @explorer.exe (OpenMutexW) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526BACE)
[Address] IAT @explorer.exe (InitializeCriticalSectionEx) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752653BA)
[Address] IAT @explorer.exe (WaitForMultipleObjectsEx) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CFBE)
[Address] IAT @explorer.exe (SetEvent) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D08C)
[Address] IAT @explorer.exe (OpenEventW) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526229A)
[Address] IAT @explorer.exe (CreateEventW) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D997)
[Address] IAT @explorer.exe (ResetEvent) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D0B2)
[Address] IAT @explorer.exe (CreateMutexW) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75260EE1)
[Address] IAT @explorer.exe (ReleaseMutex) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75251005)
[Address] IAT @explorer.exe (Sleep) : api-ms-win-core-synch-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75252284)
[Address] IAT @explorer.exe (CharNextW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526663E)
[Address] IAT @explorer.exe (CharUpperW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526695B)
[Address] IAT @explorer.exe (CharPrevW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75269AAC)
[Address] IAT @explorer.exe (CharLowerW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526E111)
[Address] IAT @explorer.exe (IsCharAlphaNumericW) : api-ms-win-core-string-l2-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526BDE7)
[Address] IAT @explorer.exe (HeapDestroy) : api-ms-win-core-heap-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752604F7)
[Address] IAT @explorer.exe (HeapSetInformation) : api-ms-win-core-heap-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526467B)
[Address] IAT @explorer.exe (GetProcessHeap) : api-ms-win-core-heap-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CEB1)
[Address] IAT @explorer.exe (WideCharToMultiByte) : api-ms-win-core-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75261CCD)
[Address] IAT @explorer.exe (MultiByteToWideChar) : api-ms-win-core-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75260C61)
[Address] IAT @explorer.exe (CompareStringW) : api-ms-win-core-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525EC17)
[Address] IAT @explorer.exe (CompareStringOrdinal) : api-ms-win-core-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75267E2F)
[Address] IAT @explorer.exe (FreeLibrary) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DD11)
[Address] IAT @explorer.exe (GetProcAddress) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525FCFE)
[Address] IAT @explorer.exe (LoadLibraryExW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526273E)
[Address] IAT @explorer.exe (LockResource) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D7DF)
[Address] IAT @explorer.exe (GetModuleHandleW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DC84)
[Address] IAT @explorer.exe (LoadResource) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752675B2)
[Address] IAT @explorer.exe (FindResourceExW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526748B)
[Address] IAT @explorer.exe (GetModuleFileNameW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E0AF)
[Address] IAT @explorer.exe (FreeLibraryAndExitThread) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E033)
[Address] IAT @explorer.exe (GetModuleHandleExW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752620DA)
[Address] IAT @explorer.exe (LoadStringW) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75263BD1)
[Address] IAT @explorer.exe (GetModuleHandleA) : api-ms-win-core-libraryloader-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E3CA)
[Address] IAT @explorer.exe (GetCurrentDirectoryW) : api-ms-win-core-processenvironment-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752654B6)
[Address] IAT @explorer.exe (GetCommandLineW) : api-ms-win-core-processenvironment-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752653E2)
[Address] IAT @explorer.exe (SearchPathW) : api-ms-win-core-processenvironment-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AC406)
[Address] IAT @explorer.exe (ExpandEnvironmentStringsW) : api-ms-win-core-processenvironment-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525EDE9)
[Address] IAT @explorer.exe (CallNtPowerInformation) : api-ms-win-power-base-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\powrprof.dll @ 0x74E81DCC)
[Address] IAT @explorer.exe (GetPwrCapabilities) : api-ms-win-power-base-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\powrprof.dll @ 0x74E8367D)
[Address] IAT @explorer.exe (GetTokenInformation) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E773)
[Address] IAT @explorer.exe (GetSidSubAuthority) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75266446)
[Address] IAT @explorer.exe (CreateWellKnownSid) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75272A05)
[Address] IAT @explorer.exe (GetLengthSid) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E66F)
[Address] IAT @explorer.exe (IsValidSid) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E6D5)
[Address] IAT @explorer.exe (CopySid) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E688)
[Address] IAT @explorer.exe (GetSidSubAuthorityCount) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526645F)
[Address] IAT @explorer.exe (CheckTokenMembership) : api-ms-win-security-base-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75260329)
[Address] IAT @explorer.exe (PathCchAddExtension) : api-ms-win-core-path-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7528A8C1)
[Address] IAT @explorer.exe (PathCchCombine) : api-ms-win-core-path-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752686CF)
[Address] IAT @explorer.exe (PathCchAppend) : api-ms-win-core-path-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752711EC)
[Address] IAT @explorer.exe (GetLongPathNameW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75282C8D)
[Address] IAT @explorer.exe (ReadFile) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526384C)
[Address] IAT @explorer.exe (CreateFileW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752626CE)
[Address] IAT @explorer.exe (WriteFile) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DA7F)
[Address] IAT @explorer.exe (GetFileSize) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752602B9)
[Address] IAT @explorer.exe (FindClose) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75264A48)
[Address] IAT @explorer.exe (CompareFileTime) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75261648)
[Address] IAT @explorer.exe (DeleteFileW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526402F)
[Address] IAT @explorer.exe (FindNextFileW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75264B4D)
[Address] IAT @explorer.exe (FindFirstFileW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752649EA)
[Address] IAT @explorer.exe (GetFileAttributesW) : api-ms-win-core-file-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262D76)
[Address] IAT @explorer.exe (GetTickCount64) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D21E)
[Address] IAT @explorer.exe (GetTickCount) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525CE5B)
[Address] IAT @explorer.exe (GetProductInfo) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7527A3A1)
[Address] IAT @explorer.exe (GetVersionExW) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525EE47)
[Address] IAT @explorer.exe (GetSystemDirectoryW) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752643EE)
[Address] IAT @explorer.exe (GetSystemTimeAsFileTime) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D306)
[Address] IAT @explorer.exe (GetSystemTime) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525ECE5)
[Address] IAT @explorer.exe (GetWindowsDirectoryW) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752669A0)
[Address] IAT @explorer.exe (GetLocalTime) : api-ms-win-core-sysinfo-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525F145)
[Address] IAT @explorer.exe (GetDynamicTimeZoneInformation) : api-ms-win-core-timezone-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752A2B27)
[Address] IAT @explorer.exe (GetTimeZoneInformation) : api-ms-win-core-timezone-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752700B1)
[Address] IAT @explorer.exe (SystemTimeToFileTime) : api-ms-win-core-timezone-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262141)
[Address] IAT @explorer.exe (GetTimeFormatEx) : api-ms-win-core-datetime-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75272599)
[Address] IAT @explorer.exe (GetDateFormatEx) : api-ms-win-core-datetime-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752725C9)
[Address] IAT @explorer.exe (GetDateFormatW) : api-ms-win-core-datetime-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75282516)
[Address] IAT @explorer.exe (MapViewOfFile) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262BB9)
[Address] IAT @explorer.exe (VirtualAlloc) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D3DD)
[Address] IAT @explorer.exe (UnmapViewOfFile) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525D2A3)
[Address] IAT @explorer.exe (CreateFileMappingW) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75262D4F)
[Address] IAT @explorer.exe (VirtualFree) : api-ms-win-core-memory-l1-1-1.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DD5A)
[Address] IAT @explorer.exe (StrStrIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526F51E)
[Address] IAT @explorer.exe (StrTrimW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526DF67)
[Address] IAT @explorer.exe (StrCmpNICW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD843)
[Address] IAT @explorer.exe (StrCmpNW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752ACC6A)
[Address] IAT @explorer.exe (StrToIntW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752ADD73)
[Address] IAT @explorer.exe (StrChrW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD80F)
[Address] IAT @explorer.exe (StrCmpICW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD76D)
[Address] IAT @explorer.exe (StrCmpNIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526F7C6)
[Address] IAT @explorer.exe (StrRStrIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752A7664)
[Address] IAT @explorer.exe (StrCmpIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752843B9)
[Address] IAT @explorer.exe (SHLoadIndirectString) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526FB3B)
[Address] IAT @explorer.exe (StrChrIW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75285923)
[Address] IAT @explorer.exe (StrCmpW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752ACED7)
[Address] IAT @explorer.exe (StrCmpCW) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75266B0D)
[Address] IAT @explorer.exe (QISearch) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DEB8)
[Address] IAT @explorer.exe (StrCmpICA) : api-ms-win-core-shlwapi-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525DF6D)
[Address] IAT @explorer.exe (GetUserDefaultUILanguage) : api-ms-win-core-localization-obsolete-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526172A)
[Address] IAT @explorer.exe (CoRegisterMessageFilter) : api-ms-win-core-com-private-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AB91D2)
[Address] IAT @explorer.exe (SHRegGetUSValueW) : api-ms-win-core-registryuserspecific-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75280829)
[Address] IAT @explorer.exe (SHRegGetBoolUSValueW) : api-ms-win-core-registryuserspecific-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75287F7A)
[Address] IAT @explorer.exe (PathRemoveExtensionW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75271111)
[Address] IAT @explorer.exe (PathIsFileSpecW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752874FF)
[Address] IAT @explorer.exe (PathGetDriveNumberW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD9BF)
[Address] IAT @explorer.exe (PathRemoveFileSpecW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7528208C)
[Address] IAT @explorer.exe (PathCommonPrefixW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75270BFB)
[Address] IAT @explorer.exe (PathStripPathW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752B26F0)
[Address] IAT @explorer.exe (PathStripToRootW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7528224C)
[Address] IAT @explorer.exe (PathFindExtensionW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75269964)
[Address] IAT @explorer.exe (PathQuoteSpacesW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752A7B36)
[Address] IAT @explorer.exe (SHExpandEnvironmentStringsW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75269C9B)
[Address] IAT @explorer.exe (PathFileExistsW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75266B45)
[Address] IAT @explorer.exe (PathGetArgsW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752ABE61)
[Address] IAT @explorer.exe (PathRemoveBlanksW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7527A588)
[Address] IAT @explorer.exe (PathFindFileNameW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AD899)
[Address] IAT @explorer.exe (PathCombineW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526E1CF)
[Address] IAT @explorer.exe (PathParseIconLocationW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752B2A5F)
[Address] IAT @explorer.exe (PathIsRootW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526E367)
[Address] IAT @explorer.exe (PathIsPrefixW) : api-ms-win-core-shlwapi-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75270D6E)
[Address] IAT @explorer.exe (RegCreateKeyW) : api-ms-win-core-registry-l2-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\advapi32.dll @ 0x75BE879E)
[Inline] IAT @explorer.exe (UnhookWinEvent) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B15A0)
[Inline] IAT @explorer.exe (SetWinEventHook) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B1400)
[Inline] IAT @explorer.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B18A0)
[Inline] IAT @explorer.exe (UnhookWindowsHookEx) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B1A70)
[Address] IAT @explorer.exe (RoGetActivationFactory) : api-ms-win-core-winrt-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC76B7)
[Address] IAT @explorer.exe (WindowsDeleteString) : api-ms-win-core-winrt-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC1360)
[Address] IAT @explorer.exe (WindowsCreateString) : api-ms-win-core-winrt-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC15A1)
[Address] IAT @explorer.exe (WindowsGetStringRawBuffer) : api-ms-win-core-winrt-string-l1-1-0.dll -> HOOKED (C:\WINDOWS\SYSTEM32\combase.dll @ 0x75AC116D)
[Address] IAT @explorer.exe (GetLocaleInfoW) : api-ms-win-core-localization-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75263457)
[Address] IAT @explorer.exe (GetThreadUILanguage) : api-ms-win-core-localization-l1-2-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75270B2D)
[Address] IAT @explorer.exe (QueryFullProcessImageNameW) : api-ms-win-core-psapi-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752AE179)
[Address] IAT @explorer.exe (StopTraceW) : api-ms-win-eventing-controller-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752A2934)
[Address] IAT @explorer.exe (EnableTraceEx2) : api-ms-win-eventing-controller-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7529960E)
[Address] IAT @explorer.exe (StartTraceW) : api-ms-win-eventing-controller-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x75299E6F)
[Address] IAT @explorer.exe (DeactivateActCtx) : api-ms-win-core-sidebyside-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526029B)
[Address] IAT @explorer.exe (ReleaseActCtx) : api-ms-win-core-sidebyside-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526025F)
[Address] IAT @explorer.exe (ActivateActCtx) : api-ms-win-core-sidebyside-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526027D)
[Address] IAT @explorer.exe (CreateActCtxW) : api-ms-win-core-sidebyside-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752667FF)
[Address] IAT @explorer.exe (ChangeTimerQueueTimer) : api-ms-win-core-threadpool-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E072)
[Address] IAT @explorer.exe (DeleteTimerQueueTimer) : api-ms-win-core-threadpool-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7526056D)
[Address] IAT @explorer.exe (CreateTimerQueueTimer) : api-ms-win-core-threadpool-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x752605BA)
[Address] IAT @explorer.exe (QueueUserWorkItem) : api-ms-win-core-threadpool-legacy-l1-1-0.dll -> HOOKED (C:\WINDOWS\system32\KERNELBASE.dll @ 0x7525E81C)
[Inline] EAT @explorer.exe (LdrLoadDll) : ntdll.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AA520)
[Inline] EAT @explorer.exe (LdrUnloadDll) : ntdll.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AA630)
[Inline] EAT @explorer.exe (SetWinEventHook) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B1400)
[Inline] EAT @explorer.exe (SetWindowsHookExA) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B16D0)
[Inline] EAT @explorer.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B18A0)
[Inline] EAT @explorer.exe (UnhookWinEvent) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B15A0)
[Inline] EAT @explorer.exe (UnhookWindowsHookEx) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4B1A70)
[Inline] EAT @explorer.exe (ChangeServiceConfig2A) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AC370)
[Inline] EAT @explorer.exe (ChangeServiceConfig2W) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AC5C0)
[Inline] EAT @explorer.exe (ChangeServiceConfigA) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4ABB20)
[Inline] EAT @explorer.exe (ChangeServiceConfigW) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4ABF90)
[Inline] EAT @explorer.exe (CreateServiceA) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AACD0)
[Inline] EAT @explorer.exe (CreateServiceW) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AB1A0)
[Inline] EAT @explorer.exe (DeleteService) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AB8B0)
[Inline] EAT @explorer.exe (SetServiceObjectSecurity) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x6D4AE980)
[Inline] EAT @explorer.exe (??_7FlowLayout@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x539CB42B)
[Inline] EAT @explorer.exe (??_7HWNDElementProvider@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x5BD7B7D4)
[Inline] EAT @explorer.exe (??_7HWNDHostAccessible@DirectUI@@6BIAccIdentity@@@) : DUI70.dll -> HOOKED (Unknown @ 0x1584CDE8)
[Inline] EAT @explorer.exe (??_7HWNDHostAccessible@DirectUI@@6BIOleWindow@@@) : DUI70.dll -> HOOKED (Unknown @ 0x10DE90E2)
[Inline] EAT @explorer.exe (??_7HWNDHostAccessible@DirectUI@@6BIServiceProvider@@@) : DUI70.dll -> HOOKED (Unknown @ 0x1575CD30)
[Inline] EAT @explorer.exe (??_7HWNDHostClientAccessible@DirectUI@@6BIAccIdentity@@@) : DUI70.dll -> HOOKED (Unknown @ 0x1584CDE8)
[Inline] EAT @explorer.exe (??_7HWNDHostClientAccessible@DirectUI@@6BIOleWindow@@@) : DUI70.dll -> HOOKED (Unknown @ 0x10DE90E2)
[Inline] EAT @explorer.exe (??_7HWNDHostClientAccessible@DirectUI@@6BIServiceProvider@@@) : DUI70.dll -> HOOKED (Unknown @ 0x1575CD30)
[Inline] EAT @explorer.exe (??_7RefcountBase@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0xDFDEC2CC)
[Inline] EAT @explorer.exe (??_7XBaby@DirectUI@@6BHWNDElement@1@@) : DUI70.dll -> HOOKED (Unknown @ 0x722DB87B)
[Inline] EAT @explorer.exe (?UiaHostProviderFromHwnd@Schema@DirectUI@@2P6GJPAUHWND__@@PAPAUIRawElementProviderSimple@@@ZA) : DUI70.dll -> HOOKED (Unknown @ 0xCBF0DB75)
[Inline] EAT @explorer.exe (?s_pClassInfo@CCPushButton@DirectUI@@0PAUIClassInfo@2@A) : DUI70.dll -> HOOKED (Unknown @ 0x3B7F9630)
[Inline] EAT @explorer.exe (@Classes@TFiler@) : rtl150.bpl -> HOOKED (Unknown @ 0x3059296C)
[Inline] EAT @explorer.exe (@Classes@TReader@) : rtl150.bpl -> HOOKED (Unknown @ 0xB45933BC)
[Inline] EAT @explorer.exe (@Classes@TStreamWriter@) : rtl150.bpl -> HOOKED (Unknown @ 0x54599FB5)
[Inline] EAT @explorer.exe (@Comobj@TAutoObjectEvent@) : rtl150.bpl -> HOOKED (Unknown @ 0xDC5BB8A4)
[Inline] EAT @explorer.exe (@Msxml@IID_ISAXEntityResolver) : rtl150.bpl -> HOOKED (Unknown @ 0x1FB8BAB5)
[Inline] EAT @explorer.exe (@Oledb@DBOBJECT_DOMAIN) : rtl150.bpl -> HOOKED (Unknown @ 0x43E12FD7)
[Inline] EAT @explorer.exe (@Oledb@DBOBJECT_SCHEMA) : rtl150.bpl -> HOOKED (Unknown @ 0x43E12FC7)
[Inline] EAT @explorer.exe (@System@ExceptionClass) : rtl150.bpl -> HOOKED (Unknown @ 0xDD6A1039)
[Inline] EAT @explorer.exe (@Wincodec@CATID_WICFormatConverters) : rtl150.bpl -> HOOKED (Unknown @ 0x6490FC7F)
[Inline] EAT @explorer.exe (@Controls@TCustomTouchManager@) : vcl150.bpl -> HOOKED (Unknown @ 0x34772A44)
[Inline] EAT @explorer.exe (@Controls@TDockTree@) : vcl150.bpl -> HOOKED (Unknown @ 0xC0779121)
[Inline] EAT @explorer.exe (@Controls@TTouchManager@) : vcl150.bpl -> HOOKED (Unknown @ 0x34772FF8)
[Inline] EAT @explorer.exe (@Jclmath@Catalan) : Jcl150.bpl -> HOOKED (C:\WINDOWS\Explorer.EXE @ 0x00BF2040)
[Inline] EAT @explorer.exe (@Jclmath@Cbrt3) : Jcl150.bpl -> HOOKED (Unknown @ 0x90B1D717)
[Inline] EAT @explorer.exe (@Jclmath@LnPi) : Jcl150.bpl -> HOOKED (Unknown @ 0xCA671DA3)
[Inline] EAT @explorer.exe (@Jclmath@Log3) : Jcl150.bpl -> HOOKED (Unknown @ 0x84D25F65)
[Inline] EAT @explorer.exe (@Jclsimplexml@TJclSimpleXMLProps@) : Jcl150.bpl -> HOOKED (Unknown @ 0x4858BACA)
[Inline] EAT @explorer.exe (@Jclstructstorage@UnitVersioning) : Jcl150.bpl -> HOOKED (Unknown @ 0xF469DFA7)
[Inline] EAT @explorer.exe (@Jclwin32@RtdlNetGroupAdd) : Jcl150.bpl -> HOOKED (Unknown @ 0x3467D32D)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_AsymmetricSignatureDeformatter) : Jcl150.bpl -> HOOKED (Unknown @ 0x269C6902)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_Buffer) : Jcl150.bpl -> HOOKED (Unknown @ 0x8313E316)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_CaseInsensitiveComparer) : Jcl150.bpl -> HOOKED (Unknown @ 0x6C9E7D34)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_FileNotFoundException) : Jcl150.bpl -> HOOKED (Unknown @ 0xEB14FC04)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_JulianCalendar) : Jcl150.bpl -> HOOKED (Unknown @ 0x607DE6A9)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_PKCS1MaskGenerationMethod) : Jcl150.bpl -> HOOKED (Unknown @ 0x5E0E5459)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_ProgIdAttribute) : Jcl150.bpl -> HOOKED (Unknown @ 0x64693527)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_SHA384) : Jcl150.bpl -> HOOKED (Unknown @ 0x062DADDF)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@CLASS_SoapDateTime) : Jcl150.bpl -> HOOKED (Unknown @ 0x886A688F)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID_IChannel) : Jcl150.bpl -> HOOKED (Unknown @ 0xB577C87E)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__BitConverter) : Jcl150.bpl -> HOOKED (Unknown @ 0xD97E4C5E)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__CryptographicException) : Jcl150.bpl -> HOOKED (Unknown @ 0xFA6AC5AF)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__CustomAttributeBuilder) : Jcl150.bpl -> HOOKED (Unknown @ 0x47E035A9)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__ExternalException) : Jcl150.bpl -> HOOKED (Unknown @ 0x70C9C911)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__IsolatedStorageFilePermission) : Jcl150.bpl -> HOOKED (Unknown @ 0x292E9B90)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__Pointer) : Jcl150.bpl -> HOOKED (Unknown @ 0x03125CDC)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__RegionInfo) : Jcl150.bpl -> HOOKED (Unknown @ 0xD76F9F58)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__SiteIdentityPermission) : Jcl150.bpl -> HOOKED (Unknown @ 0x4E9A9BCB)
[Inline] EAT @explorer.exe (@Mscorlib_tlb@IID__ThaiBuddhistCalendar) : Jcl150.bpl -> HOOKED (Unknown @ 0xA3E88D47)
[Inline] EAT @explorer.exe (@Aspbehavior@TRulerBehavior@) : vclie150.bpl -> HOOKED (Unknown @ 0x70A59DD1)
[Inline] EAT @explorer.exe (@Mshtml@CLASS_HTMLFieldSetElement) : vclie150.bpl -> HOOKED (Unknown @ 0x05861024)
[Inline] EAT @explorer.exe (@Mshtml@CLASS_HTMLLegendElement) : vclie150.bpl -> HOOKED (Unknown @ 0x05861044)
[Inline] EAT @explorer.exe (@Mshtml@CLASS_HTMLTableSection) : vclie150.bpl -> HOOKED (Unknown @ 0x05860D43)
[Inline] EAT @explorer.exe (@Mshtml@IID_IHTMLControlElement) : vclie150.bpl -> HOOKED (Unknown @ 0x0585FD25)
¤¤¤ Ruches Externes: ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Lecteurs de disque standard) - WDC WD10EARS-22Y5B1 ATA Device +++++
--- User ---
[MBR] 2a3b259a160ba98a2bd9ea9799328028
[BSP] a02df196dfb2fa1771cc5f942addb2ab : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953867 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Termine : << RKreport[0]_D_10092013_164846.txt >>
RKreport[0]_S_10092013_164324.txt
Je peux pas installer ton logigiciel ,ca me met que Windows SmartScreen a bloqué l'acces, que faire ?
je suis vraiment désolé mais la je dois aller faire mon match de tennis, je reviens surement apres, a+ et a tres tres tres bientot