RogueKiller V8.8.15 _x64_ [Mar 27 2014] par Adlice Software
mail : http://www.adlice.com/contact/
Remontees : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Systeme d'exploitation : Windows 8 (6.2.9200 ) 64 bits version
Demarrage : Mode normal
Utilisateur : chloe [Droits d'admin]
Mode : Recherche -- Date : 05/04/2014 16:49:10
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 1 ¤¤¤
[PUP][BLPATH] cacaoweb.exe -- C:\Users\chloe\AppData\Roaming\cacaoweb\cacaoweb.exe [-] -> TUÉ [TermProc]

¤¤¤ Entrees de registre : 12 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : SSync ("C:\Users\chloe\AppData\Roaming\SSync\SSync.exe" [-]) -> TROUVÉ
[RUN][SUSP PATH] HKCU\[...]\Run : DataMgr ("C:\Users\chloe\AppData\Roaming\DataMgr\DataMgr.exe" [7]) -> TROUVÉ
[RUN][SUSP PATH] HKCU\[...]\Run : Intermediate ("C:\Users\chloe\AppData\Roaming\Intermediate\Intermediate.exe" [-]) -> TROUVÉ
[RUN][PUP] HKCU\[...]\Run : cacaoweb ("C:\Users\chloe\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer [-]) -> TROUVÉ
[RUN][SUSP PATH] HKUS\.DEFAULT\[...]\Run : HD Streamer Sync (C:\Windows\system32\config\systemprofile\AppData\Local\HD Streamer\crxmon.exe "HD Streamer" [x][x][x]) -> TROUVÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-3191235107-3999263409-3934747022-1002\[...]\Run : SSync ("C:\Users\chloe\AppData\Roaming\SSync\SSync.exe" [-]) -> TROUVÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-3191235107-3999263409-3934747022-1002\[...]\Run : DataMgr ("C:\Users\chloe\AppData\Roaming\DataMgr\DataMgr.exe" [7]) -> TROUVÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-3191235107-3999263409-3934747022-1002\[...]\Run : Intermediate ("C:\Users\chloe\AppData\Roaming\Intermediate\Intermediate.exe" [-]) -> TROUVÉ
[RUN][PUP] HKUS\S-1-5-21-3191235107-3999263409-3934747022-1002\[...]\Run : cacaoweb ("C:\Users\chloe\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer [-]) -> TROUVÉ
[RUN][SUSP PATH] HKUS\S-1-5-18\[...]\Run : HD Streamer Sync (C:\Windows\system32\config\systemprofile\AppData\Local\HD Streamer\crxmon.exe "HD Streamer" [x][x][x]) -> TROUVÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Tâches planifiées : 1 ¤¤¤
[V2][SUSP PATH] SomotoUpdateCheckerAutoStart : C:\Users\chloe\AppData\Local\FilesFrog Update Checker\update_checker.exe - /auto [7] -> TROUVÉ

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Addons navigateur : 1 ¤¤¤
[CHR][PUP] Default : OfferMosquito

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤
[Address] EAT @explorer.exe (AssocCreate) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23B20)
[Address] EAT @explorer.exe (AssocGetPerceivedType) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA24940)
[Address] EAT @explorer.exe (AssocIsDangerous) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3CFBC)
[Address] EAT @explorer.exe (AssocQueryKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A870)
[Address] EAT @explorer.exe (AssocQueryKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23A20)
[Address] EAT @explorer.exe (AssocQueryStringA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3E60C)
[Address] EAT @explorer.exe (AssocQueryStringByKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3E440)
[Address] EAT @explorer.exe (AssocQueryStringByKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA241A0)
[Address] EAT @explorer.exe (AssocQueryStringW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA29CC0)
[Address] EAT @explorer.exe (ChrCmpIA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A03C)
[Address] EAT @explorer.exe (ChrCmpIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A02C)
[Address] EAT @explorer.exe (ColorAdjustLuma) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3F7A8)
[Address] EAT @explorer.exe (ColorHLSToRGB) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2BFF0)
[Address] EAT @explorer.exe (ColorRGBToHLS) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2BF30)
[Address] EAT @explorer.exe (ConnectToConnectionPoint) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA242B0)
[Address] EAT @explorer.exe (DelayLoadFailureHook) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3F8F0)
[Address] EAT @explorer.exe (DllGetClassObject) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4D448)
[Address] EAT @explorer.exe (DllGetVersion) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA35AE0)
[Address] EAT @explorer.exe (GUIDFromStringW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2F786)
[Address] EAT @explorer.exe (GetAcceptLanguagesA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA397D0)
[Address] EAT @explorer.exe (GetAcceptLanguagesW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25A40)
[Address] EAT @explorer.exe (GetMenuPosFromID) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25A60)
[Address] EAT @explorer.exe (HashData) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA397C0)
[Address] EAT @explorer.exe (IStream_Copy) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A1A0)
[Address] EAT @explorer.exe (IStream_Read) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22B80)
[Address] EAT @explorer.exe (IStream_ReadPidl) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA29980)
[Address] EAT @explorer.exe (IStream_ReadStr) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21120)
[Address] EAT @explorer.exe (IStream_Reset) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26340)
[Address] EAT @explorer.exe (IStream_Size) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A180)
[Address] EAT @explorer.exe (IStream_Write) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26320)
[Address] EAT @explorer.exe (IStream_WritePidl) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4F194)
[Address] EAT @explorer.exe (IStream_WriteStr) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26350)
[Address] EAT @explorer.exe (IUnknown_AtomicRelease) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A09C)
[Address] EAT @explorer.exe (IUnknown_Exec) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25B80)
[Address] EAT @explorer.exe (IUnknown_GetSite) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA260B0)
[Address] EAT @explorer.exe (IUnknown_GetWindow) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22D20)
[Address] EAT @explorer.exe (IUnknown_QueryService) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23300)
[Address] EAT @explorer.exe (IUnknown_QueryStatus) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4BBA8)
[Address] EAT @explorer.exe (IUnknown_Set) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21130)
[Address] EAT @explorer.exe (IUnknown_SetSite) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23310)
[Address] EAT @explorer.exe (IntlStrEqWorkerA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E3C)
[Address] EAT @explorer.exe (IntlStrEqWorkerW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E2C)
[Address] EAT @explorer.exe (IsCharSpaceA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39A80)
[Address] EAT @explorer.exe (IsCharSpaceW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21140)
[Address] EAT @explorer.exe (IsInternetESCEnabled) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA397B0)
[Address] EAT @explorer.exe (IsOS) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22B60)
[Address] EAT @explorer.exe (MLFreeLibrary) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA49EF4)
[Address] EAT @explorer.exe (MLLoadLibraryA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA49F48)
[Address] EAT @explorer.exe (MLLoadLibraryW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA49FA8)
[Address] EAT @explorer.exe (ParseURLA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA397A0)
[Address] EAT @explorer.exe (ParseURLW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2C250)
[Address] EAT @explorer.exe (PathAddBackslashA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B2C)
[Address] EAT @explorer.exe (PathAddBackslashW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23C00)
[Address] EAT @explorer.exe (PathAddExtensionA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39CCC)
[Address] EAT @explorer.exe (PathAddExtensionW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39CBC)
[Address] EAT @explorer.exe (PathAppendA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39CAC)
[Address] EAT @explorer.exe (PathAppendW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25A10)
[Address] EAT @explorer.exe (PathBuildRootA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A05C)
[Address] EAT @explorer.exe (PathBuildRootW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A06C)
[Address] EAT @explorer.exe (PathCanonicalizeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C9C)
[Address] EAT @explorer.exe (PathCanonicalizeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22CF0)
[Address] EAT @explorer.exe (PathCombineA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B5C)
[Address] EAT @explorer.exe (PathCombineW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23C10)
[Address] EAT @explorer.exe (PathCommonPrefixA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39DAC)
[Address] EAT @explorer.exe (PathCommonPrefixW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D9C)
[Address] EAT @explorer.exe (PathCompactPathA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3AF90)
[Address] EAT @explorer.exe (PathCompactPathExA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3AD80)
[Address] EAT @explorer.exe (PathCompactPathExW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26530)
[Address] EAT @explorer.exe (PathCompactPathW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3EB08)
[Address] EAT @explorer.exe (PathCreateFromUrlA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39790)
[Address] EAT @explorer.exe (PathCreateFromUrlAlloc) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39780)
[Address] EAT @explorer.exe (PathCreateFromUrlW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA236E0)
[Address] EAT @explorer.exe (PathFileExistsA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C0C)
[Address] EAT @explorer.exe (PathFileExistsAndAttributesW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25930)
[Address] EAT @explorer.exe (PathFileExistsW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23690)
[Address] EAT @explorer.exe (PathFindExtensionA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C3C)
[Address] EAT @explorer.exe (PathFindExtensionW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA210C0)
[Address] EAT @explorer.exe (PathFindFileNameA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39BFC)
[Address] EAT @explorer.exe (PathFindFileNameW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21090)
[Address] EAT @explorer.exe (PathFindNextComponentA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39AE0)
[Address] EAT @explorer.exe (PathFindNextComponentW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A210)
[Address] EAT @explorer.exe (PathFindOnPathA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3B610)
[Address] EAT @explorer.exe (PathFindOnPathW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA29170)
[Address] EAT @explorer.exe (PathFindSuffixArrayA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3B534)
[Address] EAT @explorer.exe (PathFindSuffixArrayW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA253D0)
[Address] EAT @explorer.exe (PathGetArgsA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3962C)
[Address] EAT @explorer.exe (PathGetArgsW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2C880)
[Address] EAT @explorer.exe (PathGetCharTypeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39648)
[Address] EAT @explorer.exe (PathGetCharTypeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26480)
[Address] EAT @explorer.exe (PathGetDriveNumberA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D5C)
[Address] EAT @explorer.exe (PathGetDriveNumberW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21050)
[Address] EAT @explorer.exe (PathIsContentTypeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3ABAC)
[Address] EAT @explorer.exe (PathIsContentTypeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A2C0)
[Address] EAT @explorer.exe (PathIsDirectoryA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3B404)
[Address] EAT @explorer.exe (PathIsDirectoryEmptyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3B334)
[Address] EAT @explorer.exe (PathIsDirectoryEmptyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3EE78)
[Address] EAT @explorer.exe (PathIsDirectoryW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA254D0)
[Address] EAT @explorer.exe (PathIsFileSpecA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D6C)
[Address] EAT @explorer.exe (PathIsFileSpecW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26200)
[Address] EAT @explorer.exe (PathIsLFNFileSpecA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39CFC)
[Address] EAT @explorer.exe (PathIsLFNFileSpecW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39CEC)
[Address] EAT @explorer.exe (PathIsNetworkPathA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A07C)
[Address] EAT @explorer.exe (PathIsNetworkPathW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA229A0)
[Address] EAT @explorer.exe (PathIsPrefixA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D8C)
[Address] EAT @explorer.exe (PathIsPrefixW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D7C)
[Address] EAT @explorer.exe (PathIsRelativeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D4C)
[Address] EAT @explorer.exe (PathIsRelativeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23680)
[Address] EAT @explorer.exe (PathIsRootA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C8C)
[Address] EAT @explorer.exe (PathIsRootW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22CE0)
[Address] EAT @explorer.exe (PathIsSameRootA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D1C)
[Address] EAT @explorer.exe (PathIsSameRootW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D0C)
[Address] EAT @explorer.exe (PathIsSystemFolderA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A834)
[Address] EAT @explorer.exe (PathIsSystemFolderW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3E948)
[Address] EAT @explorer.exe (PathIsUNCA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B3C)
[Address] EAT @explorer.exe (PathIsUNCServerA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C1C)
[Address] EAT @explorer.exe (PathIsUNCServerShareA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C2C)
[Address] EAT @explorer.exe (PathIsUNCServerShareW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25E60)
[Address] EAT @explorer.exe (PathIsUNCServerW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25E70)
[Address] EAT @explorer.exe (PathIsUNCW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21040)
[Address] EAT @explorer.exe (PathIsURLA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39770)
[Address] EAT @explorer.exe (PathIsURLW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA236C0)
[Address] EAT @explorer.exe (PathMakePrettyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3BCB0)
[Address] EAT @explorer.exe (PathMakePrettyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA29FC0)
[Address] EAT @explorer.exe (PathMakeSystemFolderA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A8C0)
[Address] EAT @explorer.exe (PathMakeSystemFolderW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21270)
[Address] EAT @explorer.exe (PathMatchSpecA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39BAC)
[Address] EAT @explorer.exe (PathMatchSpecExA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B8C)
[Address] EAT @explorer.exe (PathMatchSpecExW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B7C)
[Address] EAT @explorer.exe (PathMatchSpecW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B9C)
[Address] EAT @explorer.exe (PathParseIconLocationA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39BEC)
[Address] EAT @explorer.exe (PathParseIconLocationW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25E20)
[Address] EAT @explorer.exe (PathQuoteSpacesA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39BCC)
[Address] EAT @explorer.exe (PathQuoteSpacesW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22D00)
[Address] EAT @explorer.exe (PathRelativePathToA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B14)
[Address] EAT @explorer.exe (PathRelativePathToW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39AF4)
[Address] EAT @explorer.exe (PathRemoveArgsA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3BC74)
[Address] EAT @explorer.exe (PathRemoveArgsW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26450)
[Address] EAT @explorer.exe (PathRemoveBackslashA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39CDC)
[Address] EAT @explorer.exe (PathRemoveBackslashW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23730)
[Address] EAT @explorer.exe (PathRemoveBlanksA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39BBC)
[Address] EAT @explorer.exe (PathRemoveBlanksW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23BD0)
[Address] EAT @explorer.exe (PathRemoveExtensionA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C7C)
[Address] EAT @explorer.exe (PathRemoveExtensionW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25E30)
[Address] EAT @explorer.exe (PathRemoveFileSpecA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B4C)
[Address] EAT @explorer.exe (PathRemoveFileSpecW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA24040)
[Address] EAT @explorer.exe (PathRenameExtensionA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C6C)
[Address] EAT @explorer.exe (PathRenameExtensionW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C5C)
[Address] EAT @explorer.exe (PathSearchAndQualifyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3961C)
[Address] EAT @explorer.exe (PathSearchAndQualifyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22E00)
[Address] EAT @explorer.exe (PathSetDlgItemPathA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3AC50)
[Address] EAT @explorer.exe (PathSetDlgItemPathW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3E9D0)
[Address] EAT @explorer.exe (PathSkipRootA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D2C)
[Address] EAT @explorer.exe (PathSkipRootW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25A20)
[Address] EAT @explorer.exe (PathStripPathA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39D3C)
[Address] EAT @explorer.exe (PathStripPathW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26220)
[Address] EAT @explorer.exe (PathStripToRootA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39C4C)
[Address] EAT @explorer.exe (PathStripToRootW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25E50)
[Address] EAT @explorer.exe (PathUnExpandEnvStringsA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39B6C)
[Address] EAT @explorer.exe (PathUnExpandEnvStringsW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22DF0)
[Address] EAT @explorer.exe (PathUndecorateA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A75C)
[Address] EAT @explorer.exe (PathUndecorateW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA264D0)
[Address] EAT @explorer.exe (PathUnmakeSystemFolderA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A86C)
[Address] EAT @explorer.exe (PathUnmakeSystemFolderW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3E984)
[Address] EAT @explorer.exe (PathUnquoteSpacesA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39BDC)
[Address] EAT @explorer.exe (PathUnquoteSpacesW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23BE0)
[Address] EAT @explorer.exe (QISearch) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21010)
[Address] EAT @explorer.exe (SHAllocShared) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA229D0)
[Address] EAT @explorer.exe (SHAnsiToAnsi) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A310)
[Address] EAT @explorer.exe (SHAnsiToUnicode) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A320)
[Address] EAT @explorer.exe (SHAutoComplete) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2BE10)
[Address] EAT @explorer.exe (SHCopyKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A2F0)
[Address] EAT @explorer.exe (SHCopyKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A070)
[Address] EAT @explorer.exe (SHCreateMemStream) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA232B0)
[Address] EAT @explorer.exe (SHCreateShellPalette) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22890)
[Address] EAT @explorer.exe (SHCreateStreamOnFileA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A0DC)
[Address] EAT @explorer.exe (SHCreateStreamOnFileEx) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26070)
[Address] EAT @explorer.exe (SHCreateStreamOnFileW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA264A0)
[Address] EAT @explorer.exe (SHCreateStreamWrapper) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2F792)
[Address] EAT @explorer.exe (SHCreateThread) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25E80)
[Address] EAT @explorer.exe (SHCreateThreadRef) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25B30)
[Address] EAT @explorer.exe (SHCreateThreadWithHandle) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26400)
[Address] EAT @explorer.exe (SHDeleteEmptyKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A0FC)
[Address] EAT @explorer.exe (SHDeleteEmptyKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A0EC)
[Address] EAT @explorer.exe (SHDeleteKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A2E0)
[Address] EAT @explorer.exe (SHDeleteKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22C60)
[Address] EAT @explorer.exe (SHDeleteOrphanKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4EFB8)
[Address] EAT @explorer.exe (SHDeleteOrphanKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4EF48)
[Address] EAT @explorer.exe (SHDeleteValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A10C)
[Address] EAT @explorer.exe (SHDeleteValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22CA0)
[Address] EAT @explorer.exe (SHEnumKeyExA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A290)
[Address] EAT @explorer.exe (SHEnumKeyExW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A280)
[Address] EAT @explorer.exe (SHEnumValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A250)
[Address] EAT @explorer.exe (SHEnumValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A1D0)
[Address] EAT @explorer.exe (SHFormatDateTimeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3F004)
[Address] EAT @explorer.exe (SHFormatDateTimeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3F070)
[Address] EAT @explorer.exe (SHFreeShared) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA229E0)
[Address] EAT @explorer.exe (SHGetInverseCMAP) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA40830)
[Address] EAT @explorer.exe (SHGetThreadRef) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA29140)
[Address] EAT @explorer.exe (SHGetValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA243C0)
[Address] EAT @explorer.exe (SHGetValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22B20)
[Address] EAT @explorer.exe (SHGetViewStatePropertyBag) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26FA0)
[Address] EAT @explorer.exe (SHIsChildOrSelf) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23510)
[Address] EAT @explorer.exe (SHIsLowMemoryMachine) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4BC3C)
[Address] EAT @explorer.exe (SHLoadIndirectString) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23340)
[Address] EAT @explorer.exe (SHLockShared) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4F838)
[Address] EAT @explorer.exe (SHMessageBoxCheckA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4ADD4)
[Address] EAT @explorer.exe (SHMessageBoxCheckW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4AF00)
[Address] EAT @explorer.exe (SHOpenRegStream2A) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A0AC)
[Address] EAT @explorer.exe (SHOpenRegStream2W) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA243F0)
[Address] EAT @explorer.exe (SHOpenRegStreamA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A0CC)
[Address] EAT @explorer.exe (SHOpenRegStreamW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A0BC)
[Address] EAT @explorer.exe (SHPackDispParamsV) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA27DB0)
[Address] EAT @explorer.exe (SHPropertyBag_ReadStrAlloc) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA51598)
[Address] EAT @explorer.exe (SHPropertyBag_WriteBSTR) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA51498)
[Address] EAT @explorer.exe (SHQueryInfoKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A230)
[Address] EAT @explorer.exe (SHQueryInfoKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A210)
[Address] EAT @explorer.exe (SHQueryValueExA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A120)
[Address] EAT @explorer.exe (SHQueryValueExW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA263A0)
[Address] EAT @explorer.exe (SHRegCloseUSKey) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39A70)
[Address] EAT @explorer.exe (SHRegCreateUSKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39A58)
[Address] EAT @explorer.exe (SHRegCreateUSKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22640)
[Address] EAT @explorer.exe (SHRegDeleteEmptyUSKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39A44)
[Address] EAT @explorer.exe (SHRegDeleteEmptyUSKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39A34)
[Address] EAT @explorer.exe (SHRegDeleteUSValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39A24)
[Address] EAT @explorer.exe (SHRegDeleteUSValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39A14)
[Address] EAT @explorer.exe (SHRegDuplicateHKey) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A1F0)
[Address] EAT @explorer.exe (SHRegEnumUSKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA399FC)
[Address] EAT @explorer.exe (SHRegEnumUSKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA399DC)
[Address] EAT @explorer.exe (SHRegEnumUSValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39998)
[Address] EAT @explorer.exe (SHRegEnumUSValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22590)
[Address] EAT @explorer.exe (SHRegGetBoolUSValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39984)
[Address] EAT @explorer.exe (SHRegGetBoolUSValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2C220)
[Address] EAT @explorer.exe (SHRegGetBoolValueFromHKCUHKLM) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26330)
[Address] EAT @explorer.exe (SHRegGetIntW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A1E0)
[Address] EAT @explorer.exe (SHRegGetPathA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A1C0)
[Address] EAT @explorer.exe (SHRegGetPathW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A240)
[Address] EAT @explorer.exe (SHRegGetUSValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39948)
[Address] EAT @explorer.exe (SHRegGetUSValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A280)
[Address] EAT @explorer.exe (SHRegGetValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A2A4)
[Address] EAT @explorer.exe (SHRegGetValueFromHKCUHKLM) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26EBC)
[Address] EAT @explorer.exe (SHRegGetValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA221B0)
[Address] EAT @explorer.exe (SHRegOpenUSKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39928)
[Address] EAT @explorer.exe (SHRegOpenUSKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39908)
[Address] EAT @explorer.exe (SHRegQueryInfoUSKeyA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA398E0)
[Address] EAT @explorer.exe (SHRegQueryInfoUSKeyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22610)
[Address] EAT @explorer.exe (SHRegQueryUSValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA398A0)
[Address] EAT @explorer.exe (SHRegQueryUSValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39860)
[Address] EAT @explorer.exe (SHRegSetPathA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A1A0)
[Address] EAT @explorer.exe (SHRegSetPathW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A180)
[Address] EAT @explorer.exe (SHRegSetUSValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39838)
[Address] EAT @explorer.exe (SHRegSetUSValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39810)
[Address] EAT @explorer.exe (SHRegWriteUSValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA397E4)
[Address] EAT @explorer.exe (SHRegWriteUSValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA225E0)
[Address] EAT @explorer.exe (SHRegisterValidateTemplate) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA558E0)
[Address] EAT @explorer.exe (SHReleaseThreadRef) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A08C)
[Address] EAT @explorer.exe (SHRunIndirectRegClientCommand) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3C95C)
[Address] EAT @explorer.exe (SHSendMessageBroadcastA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4A27C)
[Address] EAT @explorer.exe (SHSendMessageBroadcastW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22CC0)
[Address] EAT @explorer.exe (SHSetThreadRef) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25B10)
[Address] EAT @explorer.exe (SHSetValueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A14C)
[Address] EAT @explorer.exe (SHSetValueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA263D0)
[Address] EAT @explorer.exe (SHSkipJunction) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22E20)
[Address] EAT @explorer.exe (SHStrDupA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2A260)
[Address] EAT @explorer.exe (SHStrDupW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21070)
[Address] EAT @explorer.exe (SHStripMneumonicA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4A900)
[Address] EAT @explorer.exe (SHStripMneumonicW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22DB0)
[Address] EAT @explorer.exe (SHUnicodeToAnsi) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA232E0)
[Address] EAT @explorer.exe (SHUnicodeToAnsiCP) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA2F7B9)
[Address] EAT @explorer.exe (SHUnicodeToUnicode) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3A300)
[Address] EAT @explorer.exe (SHUnlockShared) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4F818)
[Address] EAT @explorer.exe (ShellMessageBoxA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3C604)
[Address] EAT @explorer.exe (ShellMessageBoxW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3F54C)
[Address] EAT @explorer.exe (StrCSpnA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39EEC)
[Address] EAT @explorer.exe (StrCSpnIA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39EDC)
[Address] EAT @explorer.exe (StrCSpnIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39ECC)
[Address] EAT @explorer.exe (StrCSpnW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA25A30)
[Address] EAT @explorer.exe (StrCatBuffA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39FDC)
[Address] EAT @explorer.exe (StrCatBuffW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39FEC)
[Address] EAT @explorer.exe (StrCatChainW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39DCC)
[Address] EAT @explorer.exe (StrCatW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FCF8)
[Address] EAT @explorer.exe (StrChrA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39FCC)
[Address] EAT @explorer.exe (StrChrIA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F9C)
[Address] EAT @explorer.exe (StrChrIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA210E0)
[Address] EAT @explorer.exe (StrChrNIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F8C)
[Address] EAT @explorer.exe (StrChrNW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39FBC)
[Address] EAT @explorer.exe (StrChrW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21080)
[Address] EAT @explorer.exe (StrCmpCA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39DEC)
[Address] EAT @explorer.exe (StrCmpCW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22C90)
[Address] EAT @explorer.exe (StrCmpICA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21100)
[Address] EAT @explorer.exe (StrCmpICW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA210F0)
[Address] EAT @explorer.exe (StrCmpIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23650)
[Address] EAT @explorer.exe (StrCmpLogicalW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39DDC)
[Address] EAT @explorer.exe (StrCmpNA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39EBC)
[Address] EAT @explorer.exe (StrCmpNCA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E0C)
[Address] EAT @explorer.exe (StrCmpNCW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39DFC)
[Address] EAT @explorer.exe (StrCmpNIA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39EAC)
[Address] EAT @explorer.exe (StrCmpNICA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA260A0)
[Address] EAT @explorer.exe (StrCmpNICW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22B70)
[Address] EAT @explorer.exe (StrCmpNIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23670)
[Address] EAT @explorer.exe (StrCmpNW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23770)
[Address] EAT @explorer.exe (StrCmpW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA210B0)
[Address] EAT @explorer.exe (StrCpyNW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39FFC)
[Address] EAT @explorer.exe (StrCpyW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FD38)
[Address] EAT @explorer.exe (StrDupA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E4C)
[Address] EAT @explorer.exe (StrDupW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA22B50)
[Address] EAT @explorer.exe (StrFormatByteSize64A) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FC00)
[Address] EAT @explorer.exe (StrFormatByteSizeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FBF4)
[Address] EAT @explorer.exe (StrFormatByteSizeEx) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA232D0)
[Address] EAT @explorer.exe (StrFormatByteSizeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FC60)
[Address] EAT @explorer.exe (StrFormatKBSizeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FB74)
[Address] EAT @explorer.exe (StrFormatKBSizeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FBE0)
[Address] EAT @explorer.exe (StrFromTimeIntervalA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA48AC8)
[Address] EAT @explorer.exe (StrFromTimeIntervalW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA48A44)
[Address] EAT @explorer.exe (StrIsIntlEqualA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E3C)
[Address] EAT @explorer.exe (StrIsIntlEqualW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E2C)
[Address] EAT @explorer.exe (StrNCatA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FCB8)
[Address] EAT @explorer.exe (StrNCatW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FC74)
[Address] EAT @explorer.exe (StrPBrkA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F5C)
[Address] EAT @explorer.exe (StrPBrkW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA261E0)
[Address] EAT @explorer.exe (StrRChrA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39FAC)
[Address] EAT @explorer.exe (StrRChrIA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F7C)
[Address] EAT @explorer.exe (StrRChrIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F6C)
[Address] EAT @explorer.exe (StrRChrW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26210)
[Address] EAT @explorer.exe (StrRStrIA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E9C)
[Address] EAT @explorer.exe (StrRStrIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E8C)
[Address] EAT @explorer.exe (StrRetToBSTR) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA260D0)
[Address] EAT @explorer.exe (StrRetToBufA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3F9E8)
[Address] EAT @explorer.exe (StrRetToBufW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21110)
[Address] EAT @explorer.exe (StrRetToStrA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3FA98)
[Address] EAT @explorer.exe (StrRetToStrW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23330)
[Address] EAT @explorer.exe (StrSpnA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F0C)
[Address] EAT @explorer.exe (StrSpnW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39EFC)
[Address] EAT @explorer.exe (StrStrA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E7C)
[Address] EAT @explorer.exe (StrStrIA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA26490)
[Address] EAT @explorer.exe (StrStrIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA210D0)
[Address] EAT @explorer.exe (StrStrNIW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E5C)
[Address] EAT @explorer.exe (StrStrNW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E6C)
[Address] EAT @explorer.exe (StrStrW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23660)
[Address] EAT @explorer.exe (StrToInt64ExA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F2C)
[Address] EAT @explorer.exe (StrToInt64ExW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F3C)
[Address] EAT @explorer.exe (StrToIntA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F4C)
[Address] EAT @explorer.exe (StrToIntExA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39F1C)
[Address] EAT @explorer.exe (StrToIntExW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA261F0)
[Address] EAT @explorer.exe (StrToIntW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA210A0)
[Address] EAT @explorer.exe (StrTrimA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39E1C)
[Address] EAT @explorer.exe (StrTrimW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23320)
[Address] EAT @explorer.exe (UrlApplySchemeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39760)
[Address] EAT @explorer.exe (UrlApplySchemeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39750)
[Address] EAT @explorer.exe (UrlCanonicalizeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39740)
[Address] EAT @explorer.exe (UrlCanonicalizeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA236B0)
[Address] EAT @explorer.exe (UrlCombineA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39728)
[Address] EAT @explorer.exe (UrlCombineW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23750)
[Address] EAT @explorer.exe (UrlCompareA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39714)
[Address] EAT @explorer.exe (UrlCompareW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39704)
[Address] EAT @explorer.exe (UrlCreateFromPathA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA396F4)
[Address] EAT @explorer.exe (UrlCreateFromPathW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23BF0)
[Address] EAT @explorer.exe (UrlEscapeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA396E4)
[Address] EAT @explorer.exe (UrlEscapeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23720)
[Address] EAT @explorer.exe (UrlFixupW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA396D4)
[Address] EAT @explorer.exe (UrlGetLocationA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA396C4)
[Address] EAT @explorer.exe (UrlGetLocationW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA396B4)
[Address] EAT @explorer.exe (UrlGetPartA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3969C)
[Address] EAT @explorer.exe (UrlGetPartW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA23700)
[Address] EAT @explorer.exe (UrlHashA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39688)
[Address] EAT @explorer.exe (UrlHashW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39678)
[Address] EAT @explorer.exe (UrlIsA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39668)
[Address] EAT @explorer.exe (UrlIsNoHistoryA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA395EC)
[Address] EAT @explorer.exe (UrlIsNoHistoryW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA21150)
[Address] EAT @explorer.exe (UrlIsOpaqueA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA3960C)
[Address] EAT @explorer.exe (UrlIsOpaqueW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA395FC)
[Address] EAT @explorer.exe (UrlIsW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA236A0)
[Address] EAT @explorer.exe (UrlUnescapeA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA39658)
[Address] EAT @explorer.exe (UrlUnescapeW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA236D0)
[Address] EAT @explorer.exe (WhichPlatform) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA4A6D0)
[Address] EAT @explorer.exe (wnsprintfA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA493AC)
[Address] EAT @explorer.exe (wnsprintfW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA49318)
[Address] EAT @explorer.exe (wvnsprintfA) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA493F8)
[Address] EAT @explorer.exe (wvnsprintfW) : MSCTF.dll -> HOOKED (C:\Windows\system32\SHLWAPI.dll @ 0xEFA49368)
[Address] EAT @explorer.exe (BatMeterIconAnimationReset) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA4554)
[Address] EAT @explorer.exe (BatMeterIconThemeReset) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA46EC)
[Address] EAT @explorer.exe (BatMeterOnDeviceChange) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA4134)
[Address] EAT @explorer.exe (CleanupBatteryData) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA1884)
[Address] EAT @explorer.exe (CreateBatteryData) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA2B98)
[Address] EAT @explorer.exe (GetBatMeterIconAnimationState) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA41F0)
[Address] EAT @explorer.exe (GetBatMeterIconAnimationTimeDelay) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA4370)
[Address] EAT @explorer.exe (GetBatMeterIconAnimationUpdate) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA4494)
[Address] EAT @explorer.exe (GetBatteryCapacityInfo) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA3F18)
[Address] EAT @explorer.exe (GetBatteryDetails) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA5AD0)
[Address] EAT @explorer.exe (GetBatteryImmersiveIcon) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA2060)
[Address] EAT @explorer.exe (GetBatteryInfo) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA5100)
[Address] EAT @explorer.exe (GetBatteryStatusText) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA5190)
[Address] EAT @explorer.exe (GetBatteryWorkingState) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA19C0)
[Address] EAT @explorer.exe (IsBatteryBad) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA3F0C)
[Address] EAT @explorer.exe (IsBatteryHealthWarningEnabled) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA3F00)
[Address] EAT @explorer.exe (IsBatteryLevelCritical) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA3EC4)
[Address] EAT @explorer.exe (IsBatteryLevelLow) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA3ED8)
[Address] EAT @explorer.exe (IsBatteryLevelReserve) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA3EEC)
[Address] EAT @explorer.exe (PowerCapabilities) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA1560)
[Address] EAT @explorer.exe (QueryBatteryData) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA2C44)
[Address] EAT @explorer.exe (SetBatteryHealthWarningState) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA3F00)
[Address] EAT @explorer.exe (SetBatteryLevel) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA27A0)
[Address] EAT @explorer.exe (SetBatteryWorkingState) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA1048)
[Address] EAT @explorer.exe (SubscribeBatteryUpdateNotification) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA1FB8)
[Address] EAT @explorer.exe (UnsubscribeBatteryUpdateNotification) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA1980)
[Address] EAT @explorer.exe (UpdateBatteryData) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA50C4)
[Address] EAT @explorer.exe (UpdateBatteryDataAsync) : drprov.dll -> HOOKED (C:\Windows\system32\BatMeter.dll @ 0xE5EA1B60)
[Address] EAT @explorer.exe (DllCanUnloadNow) : NaturalLanguage6.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0xE1A31010)
[Address] EAT @explorer.exe (DllGetClassObject) : NaturalLanguage6.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0xE1A32B90)
[Address] EAT @explorer.exe (DllRegisterServer) : NaturalLanguage6.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0xE1BDBAC4)
[Address] EAT @explorer.exe (DllUnregisterServer) : NaturalLanguage6.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0xE1BDBAA0)
[Address] EAT @explorer.exe (GetProxyDllInfo) : NaturalLanguage6.dll -> HOOKED (C:\Windows\System32\actxprxy.dll @ 0xE1BDBAEC)

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : PUP ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) HGST HTS 541075A9E680 SATA Disk Device +++++
--- User ---
[MBR] 3d0ef31ebafa9d2b66628bae89f277a1
[BSP] 8ae96fcb2f76af5aed84d31e44578d63 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 715404 MB
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_S_05042014_164910.txt >>