Ordinateur Lent et compte inconnu connecté en partage 2014-05-04T12:06:30+00:00

SOSVirus : Dépannage PC Gratuit Forums Aide à la désinfection – Forum Virus Sécurité Ordinateur Lent et compte inconnu connecté en partage

15 sujets de 1 à 15 (sur un total de 43)
  • Auteur
    Messages
  • Darius
    Participant
    Nombre d'articles : 22

    Bonjour,

    Je pense qu’on m’a mis un virus sur l’ordi je vous communique ce que j’ai deja fait c’est suite a me connectant a skype que le probleme a du commencer j’ai eut un compte inconnu en partage que j’ia coupé de suite avec un volume marqué en ” ?”, donc j’ai utilisé ZHPFix/ RogueKiller/ MalwareBytes anti malware/ Adware remove , j’ai rajouté Adblock Plus sur mozilla , Rk m’a mis des fichiers hosts en Quarantaine dans une dossier sur le bureau aussi je pense avoir tout dit ( ah oui j’ai bloqué de suite les permissions crées du compte inconnu et interrompu la conection internet) :

    Spoiler for x8q5rzez

    Rapport de ZHPFix 2014.4.7.2 par Nicolas Coolman, Update du 07/04/2014
    Fichier d'export Registre :
    Run by Mr at 04/05/2014 12:57:29
    High Elevated Privileges : OK
    Windows 8 Home Premium Edition, 64-bit (Build 9200)

    Corbeille vidée (00mn 03s)

    ========== Clés du Registre ==========
    CTFDisabledCTFMon désactivé par défaut

    ========== Récapitulatif ==========
    1 : Clés du Registre

    End of clean in 57mn 32s

    ========== Chemin de fichier rapport ==========
    C:UsersMrAppDataRoamingZHPZHPFix[R1].txt – 04/05/2014 12:57:32 [477][/spoiler:x8q5rzez]

    Spoiler for x8q5rzez

    RogueKiller V8.8.15 _x64_ [Mar 27 2014] par Adlice Software
    mail : http://www.adlice.com/contact/” onclick=”window.open(this.href);return false;
    Remontees : http://forum.adlice.com” onclick=”window.open(this.href);return false;
    Site Web : http://www.surlatoile.org/RogueKiller/” onclick=”window.open(this.href);return false;
    Blog : http://www.adlice.com” onclick=”window.open(this.href);return false;

    Systeme d'exploitation : Windows 8 (6.2.9200 ) 64 bits version
    Demarrage : Mode normal
    Utilisateur : Mr [Droits d'admin]
    Mode : Recherche — Date : 05/04/2014 12:33:12
    | ARK || FAK || MBR |

    ¤¤¤ Processus malicieux : 0 ¤¤¤

    ¤¤¤ Entrees de registre : 2 ¤¤¤
    [HJ DESK][PUM] HKLM[…]NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
    [HJ DESK][PUM] HKLM[…]NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

    ¤¤¤ Tâches planifiées : 0 ¤¤¤

    ¤¤¤ Entrées Startup : 0 ¤¤¤

    ¤¤¤ Navigateurs web : 0 ¤¤¤

    ¤¤¤ Addons navigateur : 0 ¤¤¤

    ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

    ¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤
    [Address] EAT @firefox.exe (AssocCreate) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761171A6)
    [Address] EAT @firefox.exe (AssocGetPerceivedType) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611829F)
    [Address] EAT @firefox.exe (AssocIsDangerous) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76129DED)
    [Address] EAT @firefox.exe (AssocQueryKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612AFBF)
    [Address] EAT @firefox.exe (AssocQueryKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116F42)
    [Address] EAT @firefox.exe (AssocQueryStringA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612B20C)
    [Address] EAT @firefox.exe (AssocQueryStringByKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612B077)
    [Address] EAT @firefox.exe (AssocQueryStringByKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121980)
    [Address] EAT @firefox.exe (AssocQueryStringW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611FBFF)
    [Address] EAT @firefox.exe (ChrCmpIA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127137)
    [Address] EAT @firefox.exe (ChrCmpIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127126)
    [Address] EAT @firefox.exe (ColorAdjustLuma) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C3F3)
    [Address] EAT @firefox.exe (ColorHLSToRGB) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611B787)
    [Address] EAT @firefox.exe (ColorRGBToHLS) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611B6CD)
    [Address] EAT @firefox.exe (ConnectToConnectionPoint) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612180D)
    [Address] EAT @firefox.exe (DelayLoadFailureHook) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C56B)
    [Address] EAT @firefox.exe (DllGetClassObject) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613958F)
    [Address] EAT @firefox.exe (DllGetVersion) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76123B1B)
    [Address] EAT @firefox.exe (GUIDFromStringW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76113EE2)
    [Address] EAT @firefox.exe (GetAcceptLanguagesA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A2D)
    [Address] EAT @firefox.exe (GetAcceptLanguagesW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121ECB)
    [Address] EAT @firefox.exe (GetMenuPosFromID) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121DCD)
    [Address] EAT @firefox.exe (HashData) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A1C)
    [Address] EAT @firefox.exe (IStream_Copy) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611FE03)
    [Address] EAT @firefox.exe (IStream_Read) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761216F3)
    [Address] EAT @firefox.exe (IStream_ReadPidl) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611F70E)
    [Address] EAT @firefox.exe (IStream_ReadStr) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115E95)
    [Address] EAT @firefox.exe (IStream_Reset) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117DC3)
    [Address] EAT @firefox.exe (IStream_Size) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611FDCC)
    [Address] EAT @firefox.exe (IStream_Write) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117DB2)
    [Address] EAT @firefox.exe (IStream_WritePidl) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613A935)
    [Address] EAT @firefox.exe (IStream_WriteStr) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761204EB)
    [Address] EAT @firefox.exe (IUnknown_AtomicRelease) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127197)
    [Address] EAT @firefox.exe (IUnknown_Exec) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118D8F)
    [Address] EAT @firefox.exe (IUnknown_GetSite) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121EDC)
    [Address] EAT @firefox.exe (IUnknown_GetWindow) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115C9B)
    [Address] EAT @firefox.exe (IUnknown_QueryService) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117D31)
    [Address] EAT @firefox.exe (IUnknown_QueryStatus) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76137DCD)
    [Address] EAT @firefox.exe (IUnknown_Set) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115D7F)
    [Address] EAT @firefox.exe (IUnknown_SetSite) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117D42)
    [Address] EAT @firefox.exe (IntlStrEqWorkerA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F28)
    [Address] EAT @firefox.exe (IntlStrEqWorkerW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F17)
    [Address] EAT @firefox.exe (IsCharSpaceA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126B81)
    [Address] EAT @firefox.exe (IsCharSpaceW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115D90)
    [Address] EAT @firefox.exe (IsInternetESCEnabled) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A11)
    [Address] EAT @firefox.exe (IsOS) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118C5D)
    [Address] EAT @firefox.exe (MLFreeLibrary) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761364B9)
    [Address] EAT @firefox.exe (MLLoadLibraryA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761364F5)
    [Address] EAT @firefox.exe (MLLoadLibraryW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613653D)
    [Address] EAT @firefox.exe (ParseURLA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A00)
    [Address] EAT @firefox.exe (ParseURLW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611B8E9)
    [Address] EAT @firefox.exe (PathAddBackslashA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C09)
    [Address] EAT @firefox.exe (PathAddBackslashW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761177B0)
    [Address] EAT @firefox.exe (PathAddExtensionA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126DA1)
    [Address] EAT @firefox.exe (PathAddExtensionW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117A9E)
    [Address] EAT @firefox.exe (PathAppendA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D90)
    [Address] EAT @firefox.exe (PathAppendW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117E3F)
    [Address] EAT @firefox.exe (PathBuildRootA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127159)
    [Address] EAT @firefox.exe (PathBuildRootW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612716A)
    [Address] EAT @firefox.exe (PathCanonicalizeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D7F)
    [Address] EAT @firefox.exe (PathCanonicalizeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118CBC)
    [Address] EAT @firefox.exe (PathCombineA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C3C)
    [Address] EAT @firefox.exe (PathCombineW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611779F)
    [Address] EAT @firefox.exe (PathCommonPrefixA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E8F)
    [Address] EAT @firefox.exe (PathCommonPrefixW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E7E)
    [Address] EAT @firefox.exe (PathCompactPathA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127DEA)
    [Address] EAT @firefox.exe (PathCompactPathExA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127C40)
    [Address] EAT @firefox.exe (PathCompactPathExW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120448)
    [Address] EAT @firefox.exe (PathCompactPathW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612B6CC)
    [Address] EAT @firefox.exe (PathCreateFromUrlA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761269EF)
    [Address] EAT @firefox.exe (PathCreateFromUrlAlloc) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761269DE)
    [Address] EAT @firefox.exe (PathCreateFromUrlW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E0B)
    [Address] EAT @firefox.exe (PathFileExistsA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126CE6)
    [Address] EAT @firefox.exe (PathFileExistsAndAttributesW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117AC0)
    [Address] EAT @firefox.exe (PathFileExistsW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116F20)
    [Address] EAT @firefox.exe (PathFindExtensionA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D19)
    [Address] EAT @firefox.exe (PathFindExtensionW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761157C8)
    [Address] EAT @firefox.exe (PathFindFileNameA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126CD5)
    [Address] EAT @firefox.exe (PathFindFileNameW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761157B7)
    [Address] EAT @firefox.exe (PathFindNextComponentA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126BE7)
    [Address] EAT @firefox.exe (PathFindNextComponentW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117E61)
    [Address] EAT @firefox.exe (PathFindOnPathA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612846C)
    [Address] EAT @firefox.exe (PathFindOnPathW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120775)
    [Address] EAT @firefox.exe (PathFindSuffixArrayA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761283B7)
    [Address] EAT @firefox.exe (PathFindSuffixArrayW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118D11)
    [Address] EAT @firefox.exe (PathGetArgsA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612688B)
    [Address] EAT @firefox.exe (PathGetArgsW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76123B0A)
    [Address] EAT @firefox.exe (PathGetCharTypeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761268AC)
    [Address] EAT @firefox.exe (PathGetCharTypeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115ED2)
    [Address] EAT @firefox.exe (PathGetDriveNumberA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E3A)
    [Address] EAT @firefox.exe (PathGetDriveNumberW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115795)
    [Address] EAT @firefox.exe (PathIsContentTypeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127AA9)
    [Address] EAT @firefox.exe (PathIsContentTypeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611FE28)
    [Address] EAT @firefox.exe (PathIsDirectoryA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76128279)
    [Address] EAT @firefox.exe (PathIsDirectoryEmptyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76128187)
    [Address] EAT @firefox.exe (PathIsDirectoryEmptyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612BA25)
    [Address] EAT @firefox.exe (PathIsDirectoryW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117851)
    [Address] EAT @firefox.exe (PathIsFileSpecA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E4B)
    [Address] EAT @firefox.exe (PathIsFileSpecW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117AAF)
    [Address] EAT @firefox.exe (PathIsLFNFileSpecA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126DD4)
    [Address] EAT @firefox.exe (PathIsLFNFileSpecW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126DC3)
    [Address] EAT @firefox.exe (PathIsNetworkPathA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612717B)
    [Address] EAT @firefox.exe (PathIsNetworkPathW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117C86)
    [Address] EAT @firefox.exe (PathIsPrefixA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E6D)
    [Address] EAT @firefox.exe (PathIsPrefixW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E5C)
    [Address] EAT @firefox.exe (PathIsRelativeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E29)
    [Address] EAT @firefox.exe (PathIsRelativeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116F31)
    [Address] EAT @firefox.exe (PathIsRootA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D6E)
    [Address] EAT @firefox.exe (PathIsRootW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118CAB)
    [Address] EAT @firefox.exe (PathIsSameRootA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126DF6)
    [Address] EAT @firefox.exe (PathIsSameRootW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126DE5)
    [Address] EAT @firefox.exe (PathIsSystemFolderA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761277A6)
    [Address] EAT @firefox.exe (PathIsSystemFolderW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612B549)
    [Address] EAT @firefox.exe (PathIsUNCA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C1A)
    [Address] EAT @firefox.exe (PathIsUNCServerA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126CF7)
    [Address] EAT @firefox.exe (PathIsUNCServerShareA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D08)
    [Address] EAT @firefox.exe (PathIsUNCServerShareW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117B7A)
    [Address] EAT @firefox.exe (PathIsUNCServerW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117B69)
    [Address] EAT @firefox.exe (PathIsUNCW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115784)
    [Address] EAT @firefox.exe (PathIsURLA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761269CD)
    [Address] EAT @firefox.exe (PathIsURLW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116DFA)
    [Address] EAT @firefox.exe (PathMakePrettyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76128B6E)
    [Address] EAT @firefox.exe (PathMakePrettyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611FF0A)
    [Address] EAT @firefox.exe (PathMakeSystemFolderA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127822)
    [Address] EAT @firefox.exe (PathMakeSystemFolderW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116059)
    [Address] EAT @firefox.exe (PathMatchSpecA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C80)
    [Address] EAT @firefox.exe (PathMatchSpecExA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C5E)
    [Address] EAT @firefox.exe (PathMatchSpecExW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120645)
    [Address] EAT @firefox.exe (PathMatchSpecW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C6F)
    [Address] EAT @firefox.exe (PathParseIconLocationA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126CC4)
    [Address] EAT @firefox.exe (PathParseIconLocationW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117BF5)
    [Address] EAT @firefox.exe (PathQuoteSpacesA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126CA2)
    [Address] EAT @firefox.exe (PathQuoteSpacesW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118D5B)
    [Address] EAT @firefox.exe (PathRelativePathToA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126BF8)
    [Address] EAT @firefox.exe (PathRelativePathToW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76123AC6)
    [Address] EAT @firefox.exe (PathRemoveArgsA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76128B40)
    [Address] EAT @firefox.exe (PathRemoveArgsW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611A4F7)
    [Address] EAT @firefox.exe (PathRemoveBackslashA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126DB2)
    [Address] EAT @firefox.exe (PathRemoveBackslashW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E4F)
    [Address] EAT @firefox.exe (PathRemoveBlanksA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C91)
    [Address] EAT @firefox.exe (PathRemoveBlanksW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611776C)
    [Address] EAT @firefox.exe (PathRemoveExtensionA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D5D)
    [Address] EAT @firefox.exe (PathRemoveExtensionW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117CED)
    [Address] EAT @firefox.exe (PathRemoveFileSpecA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C2B)
    [Address] EAT @firefox.exe (PathRemoveFileSpecW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115C1B)
    [Address] EAT @firefox.exe (PathRenameExtensionA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D4C)
    [Address] EAT @firefox.exe (PathRenameExtensionW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D3B)
    [Address] EAT @firefox.exe (PathSearchAndQualifyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612687A)
    [Address] EAT @firefox.exe (PathSearchAndQualifyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121AE9)
    [Address] EAT @firefox.exe (PathSetDlgItemPathA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127B3D)
    [Address] EAT @firefox.exe (PathSetDlgItemPathW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612B5C7)
    [Address] EAT @firefox.exe (PathSkipRootA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E07)
    [Address] EAT @firefox.exe (PathSkipRootW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117E50)
    [Address] EAT @firefox.exe (PathStripPathA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126E18)
    [Address] EAT @firefox.exe (PathStripPathW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117B8B)
    [Address] EAT @firefox.exe (PathStripToRootA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126D2A)
    [Address] EAT @firefox.exe (PathStripToRootW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117CFE)
    [Address] EAT @firefox.exe (PathUnExpandEnvStringsA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126C4D)
    [Address] EAT @firefox.exe (PathUnExpandEnvStringsW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121AD8)
    [Address] EAT @firefox.exe (PathUndecorateA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761276F8)
    [Address] EAT @firefox.exe (PathUndecorateW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115EFE)
    [Address] EAT @firefox.exe (PathUnmakeSystemFolderA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761277E4)
    [Address] EAT @firefox.exe (PathUnmakeSystemFolderW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612B588)
    [Address] EAT @firefox.exe (PathUnquoteSpacesA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126CB3)
    [Address] EAT @firefox.exe (PathUnquoteSpacesW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611777D)
    [Address] EAT @firefox.exe (QISearch) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611566B)
    [Address] EAT @firefox.exe (SHAllocShared) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121BF8)
    [Address] EAT @firefox.exe (SHAnsiToAnsi) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612731E)
    [Address] EAT @firefox.exe (SHAnsiToUnicode) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612004B)
    [Address] EAT @firefox.exe (SHAutoComplete) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611EDC7)
    [Address] EAT @firefox.exe (SHCopyKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761272FC)
    [Address] EAT @firefox.exe (SHCopyKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120097)
    [Address] EAT @firefox.exe (SHCreateMemStream) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117D97)
    [Address] EAT @firefox.exe (SHCreateShellPalette) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121B15)
    [Address] EAT @firefox.exe (SHCreateStreamOnFileA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761271DB)
    [Address] EAT @firefox.exe (SHCreateStreamOnFileEx) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121EB0)
    [Address] EAT @firefox.exe (SHCreateStreamOnFileW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115EE3)
    [Address] EAT @firefox.exe (SHCreateStreamWrapper) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76113EEE)
    [Address] EAT @firefox.exe (SHCreateThread) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612153E)
    [Address] EAT @firefox.exe (SHCreateThreadRef) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117A6D)
    [Address] EAT @firefox.exe (SHCreateThreadWithHandle) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117C06)
    [Address] EAT @firefox.exe (SHDeleteEmptyKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761271FD)
    [Address] EAT @firefox.exe (SHDeleteEmptyKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761271EC)
    [Address] EAT @firefox.exe (SHDeleteKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611FE7F)
    [Address] EAT @firefox.exe (SHDeleteKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118C86)
    [Address] EAT @firefox.exe (SHDeleteOrphanKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613A7A5)
    [Address] EAT @firefox.exe (SHDeleteOrphanKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613A755)
    [Address] EAT @firefox.exe (SHDeleteValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612720E)
    [Address] EAT @firefox.exe (SHDeleteValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118D00)
    [Address] EAT @firefox.exe (SHEnumKeyExA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761272DA)
    [Address] EAT @firefox.exe (SHEnumKeyExW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761272C9)
    [Address] EAT @firefox.exe (SHEnumValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761272B8)
    [Address] EAT @firefox.exe (SHEnumValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611FDE8)
    [Address] EAT @firefox.exe (SHFormatDateTimeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612BCC7)
    [Address] EAT @firefox.exe (SHFormatDateTimeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612BD3F)
    [Address] EAT @firefox.exe (SHFreeShared) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121C09)
    [Address] EAT @firefox.exe (SHGetInverseCMAP) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612D3B5)
    [Address] EAT @firefox.exe (SHGetThreadRef) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120591)
    [Address] EAT @firefox.exe (SHGetValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121BDD)
    [Address] EAT @firefox.exe (SHGetValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117CBA)
    [Address] EAT @firefox.exe (SHGetViewStatePropertyBag) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76119323)
    [Address] EAT @firefox.exe (SHIsChildOrSelf) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611590A)
    [Address] EAT @firefox.exe (SHIsLowMemoryMachine) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76137E50)
    [Address] EAT @firefox.exe (SHLoadIndirectString) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117D0F)
    [Address] EAT @firefox.exe (SHLockShared) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613AEC2)
    [Address] EAT @firefox.exe (SHMessageBoxCheckA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76137258)
    [Address] EAT @firefox.exe (SHMessageBoxCheckW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76137387)
    [Address] EAT @firefox.exe (SHOpenRegStream2A) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761271A8)
    [Address] EAT @firefox.exe (SHOpenRegStream2W) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76121AFA)
    [Address] EAT @firefox.exe (SHOpenRegStreamA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761271CA)
    [Address] EAT @firefox.exe (SHOpenRegStreamW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761271B9)
    [Address] EAT @firefox.exe (SHPackDispParamsV) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76119F0E)
    [Address] EAT @firefox.exe (SHPropertyBag_ReadStrAlloc) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613C2A1)
    [Address] EAT @firefox.exe (SHPropertyBag_WriteBSTR) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613C229)
    [Address] EAT @firefox.exe (SHQueryInfoKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761272A7)
    [Address] EAT @firefox.exe (SHQueryInfoKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127296)
    [Address] EAT @firefox.exe (SHQueryValueExA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612721F)
    [Address] EAT @firefox.exe (SHQueryValueExW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117DD4)
    [Address] EAT @firefox.exe (SHRegCloseUSKey) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126B70)
    [Address] EAT @firefox.exe (SHRegCreateUSKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126B5F)
    [Address] EAT @firefox.exe (SHRegCreateUSKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115D4C)
    [Address] EAT @firefox.exe (SHRegDeleteEmptyUSKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126B4E)
    [Address] EAT @firefox.exe (SHRegDeleteEmptyUSKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126B3D)
    [Address] EAT @firefox.exe (SHRegDeleteUSValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126B2C)
    [Address] EAT @firefox.exe (SHRegDeleteUSValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126B1B)
    [Address] EAT @firefox.exe (SHRegDuplicateHKey) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127285)
    [Address] EAT @firefox.exe (SHRegEnumUSKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126B0A)
    [Address] EAT @firefox.exe (SHRegEnumUSKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126AF9)
    [Address] EAT @firefox.exe (SHRegEnumUSValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126AE8)
    [Address] EAT @firefox.exe (SHRegEnumUSValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115D19)
    [Address] EAT @firefox.exe (SHRegGetBoolUSValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126AD7)
    [Address] EAT @firefox.exe (SHRegGetBoolUSValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611B9D9)
    [Address] EAT @firefox.exe (SHRegGetBoolValueFromHKCUHKLM) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117D78)
    [Address] EAT @firefox.exe (SHRegGetIntW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127274)
    [Address] EAT @firefox.exe (SHRegGetPathA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127263)
    [Address] EAT @firefox.exe (SHRegGetPathW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76123AD7)
    [Address] EAT @firefox.exe (SHRegGetUSValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126AC6)
    [Address] EAT @firefox.exe (SHRegGetUSValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120634)
    [Address] EAT @firefox.exe (SHRegGetValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761272EB)
    [Address] EAT @firefox.exe (SHRegGetValueFromHKCUHKLM) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611978F)
    [Address] EAT @firefox.exe (SHRegGetValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115C66)
    [Address] EAT @firefox.exe (SHRegOpenUSKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126AB5)
    [Address] EAT @firefox.exe (SHRegOpenUSKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126AA4)
    [Address] EAT @firefox.exe (SHRegQueryInfoUSKeyA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A93)
    [Address] EAT @firefox.exe (SHRegQueryInfoUSKeyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115D3B)
    [Address] EAT @firefox.exe (SHRegQueryUSValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A82)
    [Address] EAT @firefox.exe (SHRegQueryUSValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A71)
    [Address] EAT @firefox.exe (SHRegSetPathA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127252)
    [Address] EAT @firefox.exe (SHRegSetPathW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127241)
    [Address] EAT @firefox.exe (SHRegSetUSValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A60)
    [Address] EAT @firefox.exe (SHRegSetUSValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A4F)
    [Address] EAT @firefox.exe (SHRegWriteUSValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126A3E)
    [Address] EAT @firefox.exe (SHRegWriteUSValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115D2A)
    [Address] EAT @firefox.exe (SHRegisterValidateTemplate) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613FE52)
    [Address] EAT @firefox.exe (SHReleaseThreadRef) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612718C)
    [Address] EAT @firefox.exe (SHRunIndirectRegClientCommand) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761298C2)
    [Address] EAT @firefox.exe (SHSendMessageBroadcastA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76136833)
    [Address] EAT @firefox.exe (SHSendMessageBroadcastW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118CCD)
    [Address] EAT @firefox.exe (SHSetThreadRef) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117A52)
    [Address] EAT @firefox.exe (SHSetValueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127230)
    [Address] EAT @firefox.exe (SHSetValueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76119111)
    [Address] EAT @firefox.exe (SHSkipJunction) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115DC7)
    [Address] EAT @firefox.exe (SHStrDupA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76123AE8)
    [Address] EAT @firefox.exe (SHStrDupW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115BE1)
    [Address] EAT @firefox.exe (SHStripMneumonicA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76136D51)
    [Address] EAT @firefox.exe (SHStripMneumonicW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115E69)
    [Address] EAT @firefox.exe (SHUnicodeToAnsi) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117D20)
    [Address] EAT @firefox.exe (SHUnicodeToAnsiCP) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76113F15)
    [Address] EAT @firefox.exe (SHUnicodeToUnicode) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612730D)
    [Address] EAT @firefox.exe (SHUnlockShared) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7613AEA0)
    [Address] EAT @firefox.exe (ShellMessageBoxA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612952B)
    [Address] EAT @firefox.exe (ShellMessageBoxW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C193)
    [Address] EAT @firefox.exe (StrCSpnA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126FD2)
    [Address] EAT @firefox.exe (StrCSpnIA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126FC1)
    [Address] EAT @firefox.exe (StrCSpnIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126FB0)
    [Address] EAT @firefox.exe (StrCSpnW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120623)
    [Address] EAT @firefox.exe (StrCatBuffA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761270D1)
    [Address] EAT @firefox.exe (StrCatBuffW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761270E2)
    [Address] EAT @firefox.exe (StrCatChainW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126EB1)
    [Address] EAT @firefox.exe (StrCatW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C947)
    [Address] EAT @firefox.exe (StrChrA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761270C0)
    [Address] EAT @firefox.exe (StrChrIA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612708D)
    [Address] EAT @firefox.exe (StrChrIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115773)
    [Address] EAT @firefox.exe (StrChrNIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612707C)
    [Address] EAT @firefox.exe (StrChrNW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761270AF)
    [Address] EAT @firefox.exe (StrChrW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761157A6)
    [Address] EAT @firefox.exe (StrCmpCA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126ED3)
    [Address] EAT @firefox.exe (StrCmpCW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76118CEF)
    [Address] EAT @firefox.exe (StrCmpICA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611567C)
    [Address] EAT @firefox.exe (StrCmpICW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115D5D)
    [Address] EAT @firefox.exe (StrCmpIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115C33)
    [Address] EAT @firefox.exe (StrCmpLogicalW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126EC2)
    [Address] EAT @firefox.exe (StrCmpNA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120690)
    [Address] EAT @firefox.exe (StrCmpNCA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126EF5)
    [Address] EAT @firefox.exe (StrCmpNCW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126EE4)
    [Address] EAT @firefox.exe (StrCmpNIA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F9F)
    [Address] EAT @firefox.exe (StrCmpNICA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76120656)
    [Address] EAT @firefox.exe (StrCmpNICW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761216E2)
    [Address] EAT @firefox.exe (StrCmpNIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115C55)
    [Address] EAT @firefox.exe (StrCmpNW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E93)
    [Address] EAT @firefox.exe (StrCmpW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761157D9)
    [Address] EAT @firefox.exe (StrCpyNW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761270F3)
    [Address] EAT @firefox.exe (StrCpyW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C98E)
    [Address] EAT @firefox.exe (StrDupA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F39)
    [Address] EAT @firefox.exe (StrDupW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117CCB)
    [Address] EAT @firefox.exe (StrFormatByteSize64A) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C86B)
    [Address] EAT @firefox.exe (StrFormatByteSizeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C84D)
    [Address] EAT @firefox.exe (StrFormatByteSizeEx) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117E1C)
    [Address] EAT @firefox.exe (StrFormatByteSizeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C8B9)
    [Address] EAT @firefox.exe (StrFormatKBSizeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C7D6)
    [Address] EAT @firefox.exe (StrFormatKBSizeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C82D)
    [Address] EAT @firefox.exe (StrFromTimeIntervalA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76135623)
    [Address] EAT @firefox.exe (StrFromTimeIntervalW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761355B0)
    [Address] EAT @firefox.exe (StrIsIntlEqualA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F28)
    [Address] EAT @firefox.exe (StrIsIntlEqualW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F17)
    [Address] EAT @firefox.exe (StrNCatA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C913)
    [Address] EAT @firefox.exe (StrNCatW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C8D9)
    [Address] EAT @firefox.exe (StrPBrkA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127049)
    [Address] EAT @firefox.exe (StrPBrkW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611AE4F)
    [Address] EAT @firefox.exe (StrRChrA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612709E)
    [Address] EAT @firefox.exe (StrRChrIA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612706B)
    [Address] EAT @firefox.exe (StrRChrIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612705A)
    [Address] EAT @firefox.exe (StrRChrW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761199BE)
    [Address] EAT @firefox.exe (StrRStrIA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F8E)
    [Address] EAT @firefox.exe (StrRStrIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F7D)
    [Address] EAT @firefox.exe (StrRetToBSTR) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76123AF9)
    [Address] EAT @firefox.exe (StrRetToBufA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C688)
    [Address] EAT @firefox.exe (StrRetToBufW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115D6E)
    [Address] EAT @firefox.exe (StrRetToStrA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612C70A)
    [Address] EAT @firefox.exe (StrRetToStrW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117D67)
    [Address] EAT @firefox.exe (StrSpnA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126FF4)
    [Address] EAT @firefox.exe (StrSpnW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126FE3)
    [Address] EAT @firefox.exe (StrStrA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F6C)
    [Address] EAT @firefox.exe (StrStrIA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115EC1)
    [Address] EAT @firefox.exe (StrStrIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115762)
    [Address] EAT @firefox.exe (StrStrNIW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F4A)
    [Address] EAT @firefox.exe (StrStrNW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F5B)
    [Address] EAT @firefox.exe (StrStrW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115C44)
    [Address] EAT @firefox.exe (StrToInt64ExA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127016)
    [Address] EAT @firefox.exe (StrToInt64ExW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127027)
    [Address] EAT @firefox.exe (StrToIntA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127038)
    [Address] EAT @firefox.exe (StrToIntExA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76127005)
    [Address] EAT @firefox.exe (StrToIntExW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611AE60)
    [Address] EAT @firefox.exe (StrToIntW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761157EA)
    [Address] EAT @firefox.exe (StrTrimA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126F06)
    [Address] EAT @firefox.exe (StrTrimW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76117CDC)
    [Address] EAT @firefox.exe (UrlApplySchemeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761269BC)
    [Address] EAT @firefox.exe (UrlApplySchemeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761269AB)
    [Address] EAT @firefox.exe (UrlCanonicalizeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7612699A)
    [Address] EAT @firefox.exe (UrlCanonicalizeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E3E)
    [Address] EAT @firefox.exe (UrlCombineA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126989)
    [Address] EAT @firefox.exe (UrlCombineW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E71)
    [Address] EAT @firefox.exe (UrlCompareA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126978)
    [Address] EAT @firefox.exe (UrlCompareW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126967)
    [Address] EAT @firefox.exe (UrlCreateFromPathA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126956)
    [Address] EAT @firefox.exe (UrlCreateFromPathW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611778E)
    [Address] EAT @firefox.exe (UrlEscapeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126945)
    [Address] EAT @firefox.exe (UrlEscapeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E60)
    [Address] EAT @firefox.exe (UrlFixupW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126934)
    [Address] EAT @firefox.exe (UrlGetLocationA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126923)
    [Address] EAT @firefox.exe (UrlGetLocationW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126912)
    [Address] EAT @firefox.exe (UrlGetPartA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126901)
    [Address] EAT @firefox.exe (UrlGetPartW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E82)
    [Address] EAT @firefox.exe (UrlHashA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761268F0)
    [Address] EAT @firefox.exe (UrlHashW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761268DF)
    [Address] EAT @firefox.exe (UrlIsA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761268CE)
    [Address] EAT @firefox.exe (UrlIsNoHistoryA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126847)
    [Address] EAT @firefox.exe (UrlIsNoHistoryW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76115EB0)
    [Address] EAT @firefox.exe (UrlIsOpaqueA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126869)
    [Address] EAT @firefox.exe (UrlIsOpaqueW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76126858)
    [Address] EAT @firefox.exe (UrlIsW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E2D)
    [Address] EAT @firefox.exe (UrlUnescapeA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x761268BD)
    [Address] EAT @firefox.exe (UrlUnescapeW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76116E1C)
    [Address] EAT @firefox.exe (WhichPlatform) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x76136B96)
    [Address] EAT @firefox.exe (wnsprintfA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611B420)
    [Address] EAT @firefox.exe (wnsprintfW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611B184)
    [Address] EAT @firefox.exe (wvnsprintfA) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611B3E1)
    [Address] EAT @firefox.exe (wvnsprintfW) : WININET.dll -> HOOKED (C:WindowsSysWOW64SHLWAPI.dll @ 0x7611B226)

    ¤¤¤ Ruches Externes: ¤¤¤

    ¤¤¤ Infection : ¤¤¤

    ¤¤¤ Fichier HOSTS: ¤¤¤
    –> %SystemRoot%System32driversetchosts

    ¤¤¤ MBR Verif: ¤¤¤

    +++++ PhysicalDrive0: (\.PHYSICALDRIVE0 @ IDE) ST750LM022 HN-M750MBB +++++
    — User —
    [MBR] b2d4c442d0697875a83bed8171cde188
    [BSP] f8cba6945a808fbadc2a76e45e92dfb7 : Empty MBR Code
    Partition table:
    0 – [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 715404 MB
    User = LL1 … OK!
    User = LL2 … OK!

    Termine : < < RKreport[0]_S_05042014_123312.txt >>[/spoiler:x8q5rzez]

    Merçi a vous d’avance car je suis un peu desemparé bien que je m’y connaise un peu mais pas trop….

    billmaximebillmaxime
    Moderator
    Nombre d'articles : 1402

    :hello: Darius et :welcome: sur sosvirus,

    je vais te prendre en charge :)

    fait ceci et poste le rapport s’il te plaît

    • Télécharge OTL (by OldTimer) sur ton bureau.
      ~ Comment Télécharger sur son Bureau ?

    • Lance OTL, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista
    • Coche les cases suivantes :
      • Tous les utilisateurs
      • Recherche Lop
      • Recherche Purity
      • Avec Analyses 64 bit Uniquement pour les systèmes en 64 bit

    • Copie et colle le Script dans le lien ci dessous dans la partie inférieure d’OTL “Personnalisation”

      [glow=red:2egqfir2]~ Le Script à copier est[/glow:2egqfir2] >> ici <<

    • Clique sur Analyse

    • Une fois le scan terminé 1 ou 2 rapports vont s’ouvrir OTL.txt et Extras.txt.
    • Héberge les rapports OTL.txt et Extras.txt sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum

      Note : Au cas où, tu peux les retrouver dans le dossier C:OTL ou sur ton bureau en fonction des cas rencontrés

    :merci2:

    Darius
    Participant
    Nombre d'articles : 22

    Bonjour et merci je sais pas quel salété j’ai choppé et j’espere que c’est rien de grave !
    Otl.txt:

    https://antimalware.top/www/?a=d&i=A47sBeBjyh” onclick=”window.open(this.href);return false;

    Extras.Txt
    https://antimalware.top/www/?a=d&i=po5diuXllw” onclick=”window.open(this.href);return false;

    Voici le resultat de l’analyse.

    ps: j’essaye de reinstaller les mise a jour windows mais ça marche pas ça plante ( et adobe flash player marche une fois sur deux je precise)

    billmaximebillmaxime
    Moderator
    Nombre d'articles : 1402

    re

    dit moi si ta version de windows est légale

    :merci2:

    Darius
    Participant
    Nombre d'articles : 22

    oui acheté en magasin la version rien d’illégal je peut l’assurer

    ( je suis en train de re installer les majs justement meme si ça plante un peu a cause du bidule que j’ia chopé)

    billmaximebillmaxime
    Moderator
    Nombre d'articles : 1402

    re

    ok, quand l’installation des mises a jour sera terminée, fait ceci et poste le rapport s’il te plaît

    • Désactive ton antivirus sinon l’outil ne pourra pas travailler convenablement.
    • Télécharge Shortcut_Module sur ton bureau.

      Note : Enregistrer votre travail avant de continuer !

    • Lance Shortcut_Module,
    • Clic sur Nettoyer

      Note : Patiente le temps du scan

    • Laisse travailler l’outil même s’il te parait bloqué
    • Si l’outil détecte un proxy que tu ne connais pas clic sur : “Supprimer le proxy
    • Héberge le rapport C:Shortcut_Module_date_heure.txt sur https://antimalware.top/” onclick=”window.open(this.href);return false; puis donne le lien obtenu

    :merci2:

    Darius
    Participant
    Nombre d'articles : 22

    Me revoila, donc ça m’a rien demandé en proxy , mais voici le resultat du rapport et c’ets assez effrayant….

    https://antimalware.top/www/?a=d&i=aOvCNi6iv5” onclick=”window.open(this.href);return false;

    billmaximebillmaxime
    Moderator
    Nombre d'articles : 1402

    re

    dit moi si tu as encore des soucis :interro:

    :merci2:

    Darius
    Participant
    Nombre d'articles : 22

    j’ai encore des gros lags sur internet ça met ne reponds pas assez souvent et adobe n’est ne marche pas dans certaines conditions , mais la y’a plus aucun souci concercnant le rapport ?

    billmaximebillmaxime
    Moderator
    Nombre d'articles : 1402

    re

    ok, fait ceci et poste le rapport s’il te plaît

    • Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau.
    • Installe le logiciel.
    • Lance ZHPDiag, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista
    • Clic sur Complet

      Note : Ne pas fermer le programme même si il est indiqué qu’il ne répond plus.

    • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPDiag.txt à été créé.
    • Héberge le rapport ZHPDiag.txt sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum

    :merci2:

    Darius
    Participant
    Nombre d'articles : 22

    c’est normal que ça mette violation du module zhpdiag.exe avec des lignes de code ?

    billmaximebillmaxime
    Moderator
    Nombre d'articles : 1402

    re

    c’est normal que ça mette violation du module zhpdiag.exe avec des lignes de code ?

    tu peux me donner le message d’erreur complet de zhpdiag

    :merci2:

    Darius
    Participant
    Nombre d'articles : 22

    Violation de l’acces a l’adresse 00407248 dans le Module ZHPDiag.exe . lecture de adresse 00EE9F90

    Violation de l’acces a l’adresse 00A05B60 dans le Module ZHPDiag.exe . lecture de adresse FFFFFFFE

    ça me marque ces deux choses la

    billmaximebillmaxime
    Moderator
    Nombre d'articles : 1402

    re

    fait ceci et poste le rapport s’il te plaît

      Seuls ces liens sont officiels ne pas télécharger l’outil sur d’autres liens !

      Note : Pendant le scan le bureau peut disparaître à plusieurs reprises

    • Désactive toutes tes protections si possible, antivirus, sandbox, pare-feux … ( >> Aide << )
    • Télécharge Pre_Scan sur ton bureau !
    • Si le lien n’est pas fonctionnel :
      • #ICI (renommé winlogon)

    • Si l’outil est bloqué par l’infection essaye avec d’autres extensions :

    • Si des Proxy sont détectés et que tu n’en as pas installé :
      • Clique sur Supprimer le Proxy

    • A la fin du scan, rends toi à la racine de ton disque dur ( C: )
    • Héberge le rapport Pre_Scan¤¤¤¤¤¤¤¤¤.txt sur http://cjoint.com” onclick=”window.open(this.href);return false; puis donne le lien

    :merci2:

    Darius
    Participant
    Nombre d'articles : 22

    Voila , y’a eut aucun serveur proxy de detecté veut que Rogue Killer m’avait deja mis en quarantaine les fichiers incriminés de fichiers host et remis a plat le truc de proxy voila le lien et dites quand je peut detruire ceci :

    http://cjoint.com/?3Eet2Cb7Lir” onclick=”window.open(this.href);return false;

15 sujets de 1 à 15 (sur un total de 43)
  • Vous devez être connecté pour répondre à ce sujet.