není platná aplikace typu win32, chyba připojení SSL

Zpráva

patricie · #1 Příspěvek od **patricie** » 20 dub 2014 12:34

Dobrý den,
snažila jsem se postupovat podle návodu, ale bohužel mi nejde ani vložil log z RSIT, píše to: není platná aplikace typu Win 32. Našla jsem si v této rubrice podobný problém, avšak ani podle jiných rad mi nejde nic spustit. Při připojení na internet mi navíc píše: chyba připojení SSL. Prosím o radu, už nevím co s tím.
Děkuji moc

#2 Příspěvek od **Márty84** » 20 dub 2014 13:20

Zdravim

Jelikoz nevim, jaky mate operacni system, zkuste tyto dva http://images.malwareremoval.com/random/RSIT.exe nebo http://images.malwareremoval.com/random/RSITx64.exe

Kdyby nesel ani jeden, zkuste FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100 , pripadne http://forum.viry.cz/viewtopic.php?f=24&t=130783

Kdyby neslo ani to, zkuste to jeste v nouzovem rezimu.

Pokud selze vsechno, dejte vedet.

patricie · #3 Příspěvek od **patricie** » 20 dub 2014 13:57

šlo mi to pouze v nuzovém režimu

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-04-2014
Ran by user (administrator) on PATRICIE on 20-04-2014 14:52:11
Running from G:\
Microsoft Windows 7 Starter Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\system32\cmd.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10828392 2011-09-02] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2262312 2011-05-05] (Synaptics Incorporated)
HKLM\...\Run: [NtVdmSrv] => C:\windows\inf\ntvdm.vbe
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-04-20] (AVAST Software)
HKU\S-1-5-21-1940227517-986439321-3566658070-1000\...\Run: [EPSON SX110 Series] => C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIFBE.EXE [199680 2008-09-26] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1940227517-986439321-3566658070-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1940227517-986439321-3566658070-1000\...\MountPoints2: {2c404648-ee2b-11e2-a9f4-10bf48295cbb} - G:\LaunchU3.exe -a
HKU\S-1-5-21-1940227517-986439321-3566658070-1000\...\Winlogon: [Shell] C:\Program Files\Oceanis\SystemSetting\WallPaperAgent.exe [115888 2009-12-10] (Oceanis) <==== ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/search?q={searchT ... d=ie7&rlz=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
BHO: maucampo - {5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} - C:\Program Files\maucampo\maucampobho.dll (maucampo)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows 7 Starter Helper - {D381FF29-7CFB-4D4E-B92A-C4EDDC696614} - C:\Program Files\Oceanis\SystemSetting\StarterHelper.dll (Oceanis)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rkxrwbvy.default-1373972667653
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Cookie Controller - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rkxrwbvy.default-1373972667653\Extensions\{ac2cfa60-bc96-11e0-962b-0800200c9a66}.xpi [2013-09-01]
FF Extension: Adblock Plus - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rkxrwbvy.default-1373972667653\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-01]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-07-15]

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR StartupUrls: "hxxp://www.google.com"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\user\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.2.464\_platform_specific\win_x86\widevinecdmadapter.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\34.0.1847.116\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-02-26]
CHR Extension: (Peněženka Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-11]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-20]

========================== Services (Whitelisted) =================

S2 ASUS InstantOn; C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe [92800 2011-12-01] (ASUS)
S2 AsusService; C:\windows\system32\AsusService.exe [224680 2011-08-09] ()
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-20] (AVAST Software)
S2 Update maucampo; C:\Program Files\maucampo\updatemaucampo.exe [350488 2014-04-19] ()
S2 Util maucampo; C:\Program Files\maucampo\bin\utilmaucampo.exe [350488 2014-04-19] ()
S2 VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [91464 2011-03-26] ()

==================== Drivers (Whitelisted) ====================

S1 AsIO; C:\windows\System32\drivers\AsIO.sys [11456 2010-06-28] ()
S1 AsUpIO; C:\windows\System32\drivers\AsUpIO.sys [11832 2010-08-03] ()
S2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-04-20] ()
S2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-04-20] (AVAST Software)
S1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81768 2014-04-20] (AVAST Software)
S0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-04-20] ()
S1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [776976 2014-04-20] (AVAST Software)
S1 aswSP; C:\windows\system32\drivers\aswSP.sys [411552 2014-04-20] (AVAST Software)
S2 aswStm; C:\windows\system32\drivers\aswStm.sys [67776 2014-04-20] (AVAST Software)
S1 aswTdi; C:\windows\system32\Drivers\aswTdi.sys [56080 2013-12-19] (AVAST Software)
S0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [180632 2014-04-20] ()
R1 dtsoftbus01; C:\windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-03-02] (Disc Soft Ltd)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
S1 wStLibG; C:\windows\System32\drivers\wStLibG.sys [52920 2014-03-25] (StdLib)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-04-20 14:51 - 2014-04-20 14:52 - 00000000 ____D () C:\FRST
2014-04-20 13:29 - 2014-04-20 13:29 - 01154392 _____ () C:\Users\user\Downloads\FreeTextPad_Setup.exe
2014-04-20 13:28 - 2014-04-20 13:28 - 00001918 _____ () C:\Users\user\Downloads\ucp.php
2014-04-20 13:18 - 2014-04-20 13:19 - 00000000 ____D () C:\avast! sandbox
2014-04-20 13:15 - 2014-04-20 13:16 - 00774083 _____ () C:\Users\user\Downloads\brekeke.com.exe
2014-04-20 13:02 - 2014-04-20 13:04 - 00911292 _____ () C:\Users\user\Downloads\jxpiinstall.exe
2014-04-20 12:31 - 2014-04-20 12:31 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-04-20 12:31 - 2014-04-20 12:31 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-04-19 20:19 - 2014-04-19 20:42 - 00000000 ____D () C:\Program Files\VideoLAN
2014-04-19 19:04 - 2014-04-19 19:04 - 00000000 ____D () C:\Users\user\Downloads\AviFixed
2014-04-18 21:44 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2014-04-18 20:09 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-04-18 20:09 - 2014-03-06 10:31 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-04-18 20:09 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-04-18 20:09 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-04-18 20:09 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-04-18 20:09 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-04-18 20:09 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-04-18 20:09 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-04-18 20:09 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-04-18 20:09 - 2014-03-06 09:38 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-04-18 20:09 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-04-18 20:09 - 2014-03-06 09:28 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-04-18 20:09 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-04-18 20:09 - 2014-03-06 09:18 - 00575488 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-04-18 20:09 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-04-18 20:09 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-04-18 20:09 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-04-18 20:09 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-04-18 20:09 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-04-18 20:08 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-04-18 20:08 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-04-18 20:08 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-04-18 20:08 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-04-18 20:08 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-04-18 20:08 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-04-18 20:08 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-04-11 13:55 - 2014-02-04 04:07 - 00234432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2014-04-11 13:55 - 2014-02-04 04:07 - 00149440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2014-04-11 13:55 - 2014-02-04 04:07 - 00027072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys
2014-04-11 13:54 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll
2014-04-11 13:51 - 2014-01-24 04:18 - 01212352 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2014-04-11 13:50 - 2014-03-04 11:17 - 00868352 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2014-03-25 13:41 - 2014-03-25 13:41 - 00052920 _____ (StdLib) C:\windows\system32\Drivers\wStLibG.sys

==================== One Month Modified Files and Folders =======

2014-04-20 14:52 - 2014-04-20 14:51 - 00000000 ____D () C:\FRST
2014-04-20 14:37 - 2012-12-01 04:52 - 01688080 _____ () C:\windows\WindowsUpdate.log
2014-04-20 14:36 - 2009-07-14 04:04 - 00000603 _____ () C:\windows\win.ini
2014-04-20 14:33 - 2013-07-15 20:56 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-04-20 14:00 - 2013-07-15 20:41 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-20 13:29 - 2014-04-20 13:29 - 01154392 _____ () C:\Users\user\Downloads\FreeTextPad_Setup.exe
2014-04-20 13:28 - 2014-04-20 13:28 - 00001918 _____ () C:\Users\user\Downloads\ucp.php
2014-04-20 13:19 - 2014-04-20 13:18 - 00000000 ____D () C:\avast! sandbox
2014-04-20 13:16 - 2014-04-20 13:15 - 00774083 _____ () C:\Users\user\Downloads\brekeke.com.exe
2014-04-20 13:04 - 2014-04-20 13:02 - 00911292 _____ () C:\Users\user\Downloads\jxpiinstall.exe
2014-04-20 12:56 - 2009-07-14 06:39 - 00107220 _____ () C:\windows\setupact.log
2014-04-20 12:42 - 2009-07-14 06:34 - 00016160 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-20 12:42 - 2009-07-14 06:34 - 00016160 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-20 12:34 - 2013-07-15 20:40 - 00000932 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-20 12:34 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-04-20 12:32 - 2013-07-15 20:40 - 00002047 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-04-20 12:31 - 2014-04-20 12:31 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2014-04-20 12:31 - 2014-04-20 12:31 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2014-04-20 12:31 - 2013-12-27 12:37 - 00067776 _____ (AVAST Software) C:\windows\system32\Drivers\aswstm.sys
2014-04-20 12:31 - 2013-07-15 20:40 - 00776976 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2014-04-20 12:31 - 2013-07-15 20:40 - 00411552 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2014-04-20 12:31 - 2013-07-15 20:40 - 00271264 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2014-04-20 12:31 - 2013-07-15 20:40 - 00180632 _____ () C:\windows\system32\Drivers\aswVmm.sys
2014-04-20 12:31 - 2013-07-15 20:40 - 00081768 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2014-04-20 12:31 - 2013-07-15 20:40 - 00067824 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2014-04-20 12:31 - 2013-07-15 20:40 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2014-04-20 09:23 - 2012-03-31 00:33 - 00279410 _____ () C:\windows\PFRO.log
2014-04-19 20:43 - 2013-07-16 13:12 - 00000000 ____D () C:\Program Files\The KMPlayer
2014-04-19 20:42 - 2014-04-19 20:19 - 00000000 ____D () C:\Program Files\VideoLAN
2014-04-19 19:04 - 2014-04-19 19:04 - 00000000 ____D () C:\Users\user\Downloads\AviFixed
2014-04-19 15:46 - 2011-02-16 17:39 - 00743586 _____ () C:\windows\system32\perfh010.dat
2014-04-19 15:46 - 2011-02-16 17:39 - 00150790 _____ () C:\windows\system32\perfc010.dat
2014-04-19 15:46 - 2009-07-27 12:11 - 03347546 _____ () C:\windows\system32\PerfStringBackup.INI
2014-04-18 21:23 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\NDF
2014-04-18 20:27 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\it-IT
2014-04-18 20:27 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\de-DE
2014-04-17 16:17 - 2013-07-15 20:55 - 00692400 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-04-17 16:17 - 2012-03-31 02:54 - 00070832 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-04-16 19:18 - 2013-07-16 18:01 - 00000000 ____D () C:\Users\user\AppData\Roaming\Skype
2014-04-16 11:46 - 2014-03-02 15:34 - 00000000 ____D () C:\Program Files\maucampo
2014-04-16 11:44 - 2013-07-16 19:11 - 00000000 ____D () C:\Users\user\Documents\Sociologie
2014-04-11 21:26 - 2013-07-16 18:48 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-11 21:25 - 2013-08-03 22:45 - 00000000 ____D () C:\windows\system32\MRT
2014-04-11 21:21 - 2013-07-17 12:40 - 88028728 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-04-11 12:57 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\wfp
2014-04-11 12:56 - 2012-03-31 03:13 - 00000000 ___HD () C:\ExpressGateUtil
2014-04-11 12:56 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\registration
2014-03-31 09:35 - 2013-07-16 12:43 - 00231584 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2014-03-25 13:41 - 2014-03-25 13:41 - 00052920 _____ (StdLib) C:\windows\system32\Drivers\wStLibG.sys

Some content of TEMP:
====================
C:\Users\user\AppData\Local\Temp\bitool.dll
C:\Users\user\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\user\AppData\Local\Temp\KMP_3.6.0.87.exe
C:\Users\user\AppData\Local\Temp\KMP_3.7.0.109.exe
C:\Users\user\AppData\Local\Temp\KMP_3.7.0.113.exe
C:\Users\user\AppData\Local\Temp\KMP_3.8.0.119.exe
C:\Users\user\AppData\Local\Temp\KMP_3.8.0.120.exe
C:\Users\user\AppData\Local\Temp\KMP_3.8.0.121.exe
C:\Users\user\AppData\Local\Temp\KMP_3.8.0.122.exe
C:\Users\user\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\user\AppData\Local\Temp\Mario Forever Installer.exe
C:\Users\user\AppData\Local\Temp\maucampoSetup.exe
C:\Users\user\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
C:\Users\user\AppData\Local\Temp\~499E.exe

==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-03-26 12:50

==================== End Of Log ============================

#4 Příspěvek od **Márty84** » 20 dub 2014 15:19

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

patricie · #5 Příspěvek od **patricie** » 20 dub 2014 21:04

zde to je, dělalo se to 5,5 hodin tak snad něco najdete

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 20.4.2014
Čas skenování: 22:01:03
Protokol: mbam.txt
Správce: Ano

Verze: 2.00.1.1004
Databáze malwaru: v2014.03.04.09
Databáze rootkitů: v2014.03.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Chameleon: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: user

Typ skenu: Úplný sken
Výsledek: Dokončeno
Prohledaných objektů: 332157
Uplynulý čas: 5 hod, 19 min, 4 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Shuriken: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 4
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\updatemaucampo.exe, 2064, , [a858a65aa957768ac1045e33c04126da]
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\utilmaucampo.exe, 2732, , [4bb5639da06006fa873e7b16dc25ef11]
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\FilterApp_C.exe, 3452, , [59a7a85899672cd456468e33f50e14ec]
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\maucampo.BrowserAdapter.exe, 1772, , [59a7a85899672cd456468e33f50e14ec]

Moduly: 2
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\sqlite3.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\{ef8714df-a44b-464c-9034-549a70dc4cd7}.dll, , [59a7a85899672cd456468e33f50e14ec],

Klíče registru: 15
PUP.Optional.Maucampo.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update maucampo, , [a858a65aa957768ac1045e33c04126da],
PUP.Optional.Maucampo.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util maucampo, , [4bb5639da06006fa873e7b16dc25ef11],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\CLASSES\CLSID\{5d7d4fb9-aca5-4013-8879-c58dcd4df9f1}, , [49b7be428779e11f655fb4ddc33e8c74],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{5275ac7f-2327-42cc-92c8-1d2aa6a563cf}, , [49b7be428779e11f655fb4ddc33e8c74],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E1E7DBB4-1DD9-4025-9C52-18F9A2AD944E}, , [49b7be428779e11f655fb4ddc33e8c74],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{5D7D4FB9-ACA5-4013-8879-C58DCD4DF9F1}, , [49b7be428779e11f655fb4ddc33e8c74],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\CLASSES\CLSID\{5D7D4FB9-ACA5-4013-8879-C58DCD4DF9F1}\INPROCSERVER32, , [49b7be428779e11f655fb4ddc33e8c74],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [58a8cb3539c74ab6b46f4e26877bf709],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\maucampo, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\CLASSES\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, HKLM\SOFTWARE\maucampo, , [728e986847b958a8821e348dbf4436ca],
PUP.Optional.Maucampo.A, HKU\S-1-5-21-1940227517-986439321-3566658070-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\maucampo, , [ce32a85868981be5b2eddfe2f60d22de],

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 4
PUP.Optional.Maucampo.A, C:\Program Files\maucampo, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\plugins, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\TEMP, , [59a7a85899672cd456468e33f50e14ec],

Soubory: 40
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\updatemaucampo.exe, , [a858a65aa957768ac1045e33c04126da],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\utilmaucampo.exe, , [4bb5639da06006fa873e7b16dc25ef11],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\maucampoBHO.dll, , [49b7be428779e11f655fb4ddc33e8c74],
PUP.Optional.Maucampo.A, C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FN5RPCGZ\Setup[1].exe, , [b8482ad69a6645bbb80c632e32cf1ce4],
PUP.Optional.Somoto, C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FN5RPCGZ\BiTool[1].dll, , [0ff14db350b0fc046df1cc5f8979ce32],
PUP.Optional.Softonic, C:\Users\user\AppData\Local\Temp\KMP_3.6.0.87.exe, , [8a76d62a0cf497699d06192d79883fc1],
PUP.Optional.Softonic.A, C:\Users\user\AppData\Local\Temp\KMP_3.7.0.109.exe, , [02fe56aaec145ca45da6d48e778a0ef2],
PUP.Optional.Softonic.A, C:\Users\user\AppData\Local\Temp\KMP_3.7.0.113.exe, , [18e8d828639dfd03966d4121eb16659b],
PUP.Optional.Softonic.A, C:\Users\user\AppData\Local\Temp\KMP_3.8.0.119.exe, , [ee127987e719dc249e65b5ad5da4659b],
PUP.Optional.Softonic.A, C:\Users\user\AppData\Local\Temp\KMP_3.8.0.120.exe, , [60a0d42c99671ae69d662c3623def30d],
PUP.Optional.Softonic.A, C:\Users\user\AppData\Local\Temp\KMP_3.8.0.121.exe, , [7f8178882ed24fb1b74c84de9b665fa1],
PUP.Optional.Softonic.A, C:\Users\user\AppData\Local\Temp\KMP_3.8.0.122.exe, , [2ed2837d35cb9b65fd06a5bd9e635da3],
PUP.Optional.Somoto, C:\Users\user\AppData\Local\Temp\bitool.dll, , [11ef28d8dc24827ed18d8c9fd42e2ed2],
PUP.Optional.Maucampo.A, C:\Users\user\AppData\Local\Temp\maucampoSetup.exe, , [1be505fbfd0354ac912b66ba6c98e719],
BitcoinMiner, C:\Windows\inf\msjwhb\msjwhb.exe, , [36ca8e7230d0768ac92290ae1be6d22e],
Trojan.Script, C:\Windows\System32\msvihg.vbe, , [01ff17e9f50bb64aea31474ea9596799],
Malware.Trace, C:\Windows\inf\ntvdm.inf, , [1ee2a35d05fb0ef260a95f4dc83ba957],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\maucampo.ico, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\0, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\7za.exe, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\maucampoUninstall.exe, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\updatemaucampo.InstallState, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\7za.exe, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\BrowserAdapterS.7z, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\FilterApp_C.exe, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\maucampo.BrowserAdapter.exe, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\maucampo.BrowserFilter.Helper.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\maucampo.BrowserFilter.Helper.dll.old.028afe1f-10d5-450e-becb-f4e037118bdb, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\maucampoBAApp.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\maucampoBrowserFilter.exe, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\sqlite3.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\utilmaucampo.InstallState, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\{ef8714df-a44b-464c-9034-549a70dc4cd7}.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\plugins\maucampo.Bromon.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\plugins\maucampo.BrowserAdapterS.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\plugins\maucampo.BrowserFilterG.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\plugins\maucampo.CompatibilityChecker.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\plugins\maucampo.FFUpdate.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\plugins\maucampo.IEUpdate.dll, , [59a7a85899672cd456468e33f50e14ec],
PUP.Optional.Maucampo.A, C:\Program Files\maucampo\bin\plugins\maucampo.PurBrowseG.dll, , [59a7a85899672cd456468e33f50e14ec],

Fyzické sektory: 0
(No malicious items detected)

(end)

#6 Příspěvek od **Márty84** » 20 dub 2014 21:10

Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc musite test zopakovat, abychom vedeli, ze se to nevraci. Napiste, jestli neco nasel a podle toho zvolim dalsi postup.

patricie · #7 Příspěvek od **patricie** » 21 dub 2014 08:14

tak mi to našlo ještě 2 věci

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 21.4.2014
Čas skenování: 9:08:15
Protokol: dfgh.txt
Správce: Ano

Verze: 2.00.1.1004
Databáze malwaru: v2014.04.20.06
Databáze rootkitů: v2014.03.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Chameleon: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: user

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 229444
Uplynulý čas: 22 min, 39 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Shuriken: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 1
PUP.Optional.Softonic.A, HKU\S-1-5-21-1940227517-986439321-3566658070-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, , [71253af2c7b4c274bf11a1cc91710af6],

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 0
(No malicious items detected)

Soubory: 1
Trojan.Agent, C:\$RECYCLE.BIN\S-1-5-21-1940227517-986439321-3566658070-1000\$RIZHZRO.exe, , [d9bdf9333a4179bd617724f0ae56e21e],

Fyzické sektory: 0
(No malicious items detected)

(end)

#8 Příspěvek od **Márty84** » 21 dub 2014 08:28

Nalezy nechte opet odstranit, pak MBAM odinstalujte.

Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

patricie · #9 Příspěvek od **patricie** » 21 dub 2014 09:13

ComboFix 14-04-20.01 - user 21.04.2014 9:43.1.2 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.1012.116 [GMT 2:00]
Spuštěný z: c:\users\user\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-03-21 do 2014-04-21 )))))))))))))))))))))))))))))))
.
.
2014-04-21 08:05 . 2014-04-21 08:05 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-04-20 14:55 . 2014-04-21 07:44 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{82E2803E-6D34-4F46-9253-B184659BE199}\offreg.dll
2014-04-20 14:30 . 2014-04-21 07:32 107736 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-04-20 14:30 . 2014-04-20 14:30 -------- d-----w- c:\programdata\Malwarebytes
2014-04-20 12:51 . 2014-04-20 12:53 -------- d-----w- C:\FRST
2014-04-20 10:31 . 2014-04-20 10:31 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-04-20 10:31 . 2014-04-20 10:31 43152 ----a-w- c:\windows\avastSS.scr
2014-04-20 07:27 . 2014-04-17 03:32 8050496 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{82E2803E-6D34-4F46-9253-B184659BE199}\mpengine.dll
2014-04-19 18:57 . 2014-04-19 18:57 -------- d-----w- c:\users\user\AppData\Local\ElevatedDiagnostics
2014-04-19 18:19 . 2014-04-19 18:42 -------- d-----w- c:\program files\VideoLAN
2014-04-18 19:44 . 2012-05-04 09:59 514560 ----a-w- c:\windows\system32\qdvd.dll
2014-04-18 18:08 . 2014-03-06 08:20 8011264 ----a-w- c:\program files\Internet Explorer\F12Resources.dll
2014-04-18 18:08 . 2014-03-06 06:56 1064960 ----a-w- c:\program files\Internet Explorer\networkinspection.dll
2014-04-18 18:08 . 2014-03-06 06:57 1634304 ----a-w- c:\program files\Internet Explorer\F12.dll
2014-04-18 18:08 . 2014-03-06 07:44 222720 ----a-w- c:\program files\Internet Explorer\ielowutil.exe
2014-04-18 18:08 . 2014-03-06 07:03 470016 ----a-w- c:\program files\Internet Explorer\ieinstal.exe
2014-04-18 18:08 . 2014-03-06 05:41 1789440 ----a-w- c:\windows\system32\wininet.dll
2014-04-18 18:08 . 2014-03-08 01:59 811728 ----a-w- c:\program files\Internet Explorer\iexplore.exe
2014-04-18 18:08 . 2014-03-06 06:40 1967104 ----a-w- c:\windows\system32\inetcpl.cpl
2014-04-18 18:08 . 2014-03-06 07:46 4254720 ----a-w- c:\windows\system32\jscript9.dll
2014-04-11 11:55 . 2014-02-04 02:07 149440 ----a-w- c:\windows\system32\drivers\storport.sys
2014-04-11 11:55 . 2014-02-04 02:07 234432 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-04-11 11:55 . 2014-02-04 02:07 27072 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2014-04-11 11:54 . 2014-02-04 02:00 2048 ----a-w- c:\windows\system32\iologmsg.dll
2014-04-11 11:51 . 2014-01-24 02:18 1212352 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-03-25 11:41 . 2014-03-25 11:41 52920 ----a-w- c:\windows\system32\drivers\wStLibG.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-20 10:31 . 2013-12-27 10:37 67776 ----a-w- c:\windows\system32\drivers\aswstm.sys
2014-04-20 10:31 . 2013-07-15 18:40 776976 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-04-20 10:31 . 2013-07-15 18:40 180632 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-04-20 10:31 . 2013-07-15 18:40 411552 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-04-20 10:31 . 2013-07-15 18:40 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-04-20 10:31 . 2013-07-15 18:40 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-04-20 10:31 . 2013-07-15 18:40 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-04-20 10:31 . 2013-07-15 18:40 271264 ----a-w- c:\windows\system32\aswBoot.exe
2014-04-17 14:17 . 2013-07-15 18:55 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-04-17 14:17 . 2012-03-31 00:54 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-31 07:35 . 2013-07-16 10:43 231584 ------w- c:\windows\system32\MpSigStub.exe
2014-03-11 20:28 . 2014-03-11 20:28 5777288 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2014-03-02 13:29 . 2014-03-02 13:29 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-02-07 01:07 . 2014-03-12 19:30 2349056 ----a-w- c:\windows\system32\win32k.sys
2014-02-04 02:04 . 2014-03-12 19:27 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-02-04 02:04 . 2014-03-12 19:32 509440 ----a-w- c:\windows\system32\qedit.dll
2014-01-29 02:06 . 2014-03-12 19:27 381440 ----a-w- c:\windows\system32\wer.dll
2014-01-28 02:07 . 2014-03-12 19:30 185344 ----a-w- c:\windows\system32\wwansvc.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-04-20 10:31 260976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-02-27 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-02-27 168960]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-02-27 161280]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-09-02 10828392]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-05-05 2262312]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-04-20 3873704]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
backup=c:\windows\pss\AsusVibeLauncher.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-11-21 16:57 959904 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSPRP]
2012-03-31 01:09 3331312 ----a-w- c:\program files\Asus\APRP\aprp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
2011-07-29 09:43 737104 ----a-w- c:\program files\Asus\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CapsHook]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eee Docking]
2011-07-14 02:53 417456 ----a-w- c:\program files\Asus\Eee Docking\Eee Docking.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GfxServiceInstall]
2012-02-27 11:51 131 ----a-w- c:\windows\System32\GfxCUIServiceInstall.vbs
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyMon]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyService]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 12:17 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperHybridEngine]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VAWinAgent]
2012-01-12 23:26 45448 ----a-w- c:\expressgateutil\VAWinAgent.exe
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-04-20 67776]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-06 108032]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-04-20 776976]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-04-20 411552]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-03-02 243128]
S1 wStLibG;wStLibG;c:\windows\system32\drivers\wStLibG.sys [2014-03-25 52920]
S2 ASUS InstantOn;ASUS InstantOn Service;c:\program files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
S2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2011-08-08 224680]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-04-20 24184]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-04-20 67824]
S2 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-03-26 91464]
S3 igddim32;igddim32;c:\windows\system32\DRIVERS\igddim32.sys [2012-02-27 1344512]
S3 igdkmd32;igdkmd32;c:\windows\system32\DRIVERS\igdkmd32.sys [2012-02-27 419328]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-04-21 107736]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*Deregistered* - MBAMWebAccessControl
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-04-11 14:43 1077576 ----a-w- c:\program files\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-04-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-15 14:18]
.
2014-04-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-07-15 18:40]
.
2014-04-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-07-15 18:40]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rkxrwbvy.default-1373972667653\
FF - prefs.js: browser.search.defaulturl - hxxps://www.google.com/search
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxps://www.google.com/search
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
HKLM-Run-NtVdmSrv - c:\windows\inf\ntvdm.vbe
MSConfigStartUp-Adobe Reader Speed Launcher - c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe
AddRemove-Indeo® Software - c:\program files\Ligos\Indeo\Uninst.isu
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-04-21 10:10:55
ComboFix-quarantined-files.txt 2014-04-21 08:10
.
Před spuštěním: Volných bajtů: 75 050 332 160
Po spuštění: Volných bajtů: 75 092 189 184
.
- - End Of File - - 7403EDDC4FA14597302E0600463DBDE3
A36C5E4F47E84449FF07ED3517B43A31

#10 Příspěvek od **Márty84** » 21 dub 2014 09:27

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Driver::
SkypeUpdate
wStLibG

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

patricie · #11 Příspěvek od **patricie** » 21 dub 2014 10:11

ComboFix 14-04-20.01 - user 21.04.2014 10:39:40.2.2 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.1012.331 [GMT 2:00]
Spuštěný z: c:\users\user\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\user\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_WSTLIBG
-------\Service_SkypeUpdate
-------\Service_wStLibG
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-03-21 do 2014-04-21 )))))))))))))))))))))))))))))))
.
.
2014-04-21 09:02 . 2013-11-08 01:15 7772552 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{64CC19F0-0CC2-4055-9A32-0934695D03D4}\mpengine.dll
2014-04-20 14:30 . 2014-04-21 07:32 107736 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-04-20 14:30 . 2014-04-20 14:30 -------- d-----w- c:\programdata\Malwarebytes
2014-04-20 12:51 . 2014-04-20 12:53 -------- d-----w- C:\FRST
2014-04-20 10:31 . 2014-04-20 10:31 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-04-20 10:31 . 2014-04-20 10:31 43152 ----a-w- c:\windows\avastSS.scr
2014-04-20 07:27 . 2014-04-17 03:32 8050496 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{82E2803E-6D34-4F46-9253-B184659BE199}\mpengine.dll
2014-04-19 18:57 . 2014-04-19 18:57 -------- d-----w- c:\users\user\AppData\Local\ElevatedDiagnostics
2014-04-19 18:19 . 2014-04-19 18:42 -------- d-----w- c:\program files\VideoLAN
2014-04-18 19:44 . 2012-05-04 09:59 514560 ----a-w- c:\windows\system32\qdvd.dll
2014-04-18 18:08 . 2014-03-06 08:20 8011264 ----a-w- c:\program files\Internet Explorer\F12Resources.dll
2014-04-18 18:08 . 2014-03-06 06:56 1064960 ----a-w- c:\program files\Internet Explorer\networkinspection.dll
2014-04-18 18:08 . 2014-03-06 06:57 1634304 ----a-w- c:\program files\Internet Explorer\F12.dll
2014-04-18 18:08 . 2014-03-06 07:44 222720 ----a-w- c:\program files\Internet Explorer\ielowutil.exe
2014-04-18 18:08 . 2014-03-06 07:03 470016 ----a-w- c:\program files\Internet Explorer\ieinstal.exe
2014-04-18 18:08 . 2014-03-06 05:41 1789440 ----a-w- c:\windows\system32\wininet.dll
2014-04-18 18:08 . 2014-03-08 01:59 811728 ----a-w- c:\program files\Internet Explorer\iexplore.exe
2014-04-18 18:08 . 2014-03-06 06:40 1967104 ----a-w- c:\windows\system32\inetcpl.cpl
2014-04-18 18:08 . 2014-03-06 07:46 4254720 ----a-w- c:\windows\system32\jscript9.dll
2014-04-11 11:55 . 2014-02-04 02:07 149440 ----a-w- c:\windows\system32\drivers\storport.sys
2014-04-11 11:55 . 2014-02-04 02:07 234432 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-04-11 11:55 . 2014-02-04 02:07 27072 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2014-04-11 11:54 . 2014-02-04 02:00 2048 ----a-w- c:\windows\system32\iologmsg.dll
2014-04-11 11:51 . 2014-01-24 02:18 1212352 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-03-25 11:41 . 2014-03-25 11:41 52920 ----a-w- c:\windows\system32\drivers\wStLibG.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-20 10:31 . 2013-12-27 10:37 67776 ----a-w- c:\windows\system32\drivers\aswstm.sys
2014-04-20 10:31 . 2013-07-15 18:40 776976 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-04-20 10:31 . 2013-07-15 18:40 180632 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-04-20 10:31 . 2013-07-15 18:40 411552 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-04-20 10:31 . 2013-07-15 18:40 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-04-20 10:31 . 2013-07-15 18:40 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-04-20 10:31 . 2013-07-15 18:40 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-04-20 10:31 . 2013-07-15 18:40 271264 ----a-w- c:\windows\system32\aswBoot.exe
2014-04-17 14:17 . 2013-07-15 18:55 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-04-17 14:17 . 2012-03-31 00:54 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-31 07:35 . 2013-07-16 10:43 231584 ------w- c:\windows\system32\MpSigStub.exe
2014-03-11 20:28 . 2014-03-11 20:28 5777288 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2014-03-02 13:29 . 2014-03-02 13:29 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-02-07 01:07 . 2014-03-12 19:30 2349056 ----a-w- c:\windows\system32\win32k.sys
2014-02-04 02:04 . 2014-03-12 19:27 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-02-04 02:04 . 2014-03-12 19:32 509440 ----a-w- c:\windows\system32\qedit.dll
2014-01-29 02:06 . 2014-03-12 19:27 381440 ----a-w- c:\windows\system32\wer.dll
2014-01-28 02:07 . 2014-03-12 19:30 185344 ----a-w- c:\windows\system32\wwansvc.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-04-20 10:31 260976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-02-27 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-02-27 168960]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-02-27 161280]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-09-02 10828392]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-05-05 2262312]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-04-20 3873704]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
backup=c:\windows\pss\AsusVibeLauncher.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSPRP]
2012-03-31 01:09 3331312 ----a-w- c:\program files\Asus\APRP\aprp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
2011-07-29 09:43 737104 ----a-w- c:\program files\Asus\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CapsHook]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eee Docking]
2011-07-14 02:53 417456 ----a-w- c:\program files\Asus\Eee Docking\Eee Docking.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GfxServiceInstall]
2012-02-27 11:51 131 ----a-w- c:\windows\System32\GfxCUIServiceInstall.vbs
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyMon]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyService]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 12:17 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperHybridEngine]
2011-11-10 21:01 34728 ----a-w- c:\windows\System32\AsusSender.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VAWinAgent]
2012-01-12 23:26 45448 ----a-w- c:\expressgateutil\VAWinAgent.exe
.
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-06 108032]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-04-21 107736]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-04-20 776976]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-04-20 411552]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-03-02 243128]
S2 ASUS InstantOn;ASUS InstantOn Service;c:\program files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
S2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2011-08-08 224680]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-04-20 24184]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-04-20 67824]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-04-20 67776]
S2 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-03-26 91464]
S3 igddim32;igddim32;c:\windows\system32\DRIVERS\igddim32.sys [2012-02-27 1344512]
S3 igdkmd32;igdkmd32;c:\windows\system32\DRIVERS\igdkmd32.sys [2012-02-27 419328]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-04-11 14:43 1077576 ----a-w- c:\program files\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-04-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-15 14:18]
.
2014-04-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-07-15 18:40]
.
2014-04-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-07-15 18:40]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rkxrwbvy.default-1373972667653\
FF - prefs.js: browser.search.defaulturl - hxxps://www.google.com/search
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxps://www.google.com/search
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\System32\WUDFHost.exe
c:\program files\ASUS\InstantOn for EPC\InsOnWMI.exe
c:\windows\system32\conhost.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Celkový čas: 2014-04-21 11:09:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-04-21 09:09
ComboFix2.txt 2014-04-21 08:10
.
Před spuštěním: Volných bajtů: 75 145 478 144
Po spuštění: Volných bajtů: 74 727 514 112
.
- - End Of File - - 133DCF9C5476004CDCAC66DEB3436CDC
A36C5E4F47E84449FF07ED3517B43A31

#12 Příspěvek od **Márty84** » 21 dub 2014 10:30

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

patricie · #13 Příspěvek od **patricie** » 21 dub 2014 10:44

jinak moc děkuji že mi pomáháte, nevím co bych si s tím počala

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : user [Práva správce]
Mód : Kontrola -- Datum : 04/21/2014 11:41:49
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] EAT @explorer.exe (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC09AE)
[Address] EAT @explorer.exe (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB49A1)
[Address] EAT @explorer.exe (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE0731)
[Address] EAT @explorer.exe (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB6395)
[Address] EAT @explorer.exe (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB940E)
[Address] EAT @explorer.exe (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC08ED)
[Address] EAT @explorer.exe (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DCE6B3)
[Address] EAT @explorer.exe (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DCD395)
[Address] EAT @explorer.exe (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB94AB)
[Address] EAT @explorer.exe (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB6A18)
[Address] EAT @explorer.exe (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB3982)
[Address] EAT @explorer.exe (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DCD9DA)
[Address] EAT @explorer.exe (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DD3B52)
[Address] EAT @explorer.exe (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE35E7)
[Address] EAT @explorer.exe (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB53E5)
[Address] EAT @explorer.exe (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB51BF)
[Address] EAT @explorer.exe (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB4EA1)
[Address] EAT @explorer.exe (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB63E6)
[Address] EAT @explorer.exe (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBFCAF)
[Address] EAT @explorer.exe (EnableTheming) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2FEB)
[Address] EAT @explorer.exe (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB3F9A)
[Address] EAT @explorer.exe (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB3F9A)
[Address] EAT @explorer.exe (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE06CC)
[Address] EAT @explorer.exe (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB4BAF)
[Address] EAT @explorer.exe (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC04BC)
[Address] EAT @explorer.exe (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC0473)
[Address] EAT @explorer.exe (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2E7F)
[Address] EAT @explorer.exe (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC05DD)
[Address] EAT @explorer.exe (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC0FB1)
[Address] EAT @explorer.exe (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBCD2E)
[Address] EAT @explorer.exe (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBF8BF)
[Address] EAT @explorer.exe (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC165D)
[Address] EAT @explorer.exe (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBBF93)
[Address] EAT @explorer.exe (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB7C1F)
[Address] EAT @explorer.exe (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2932)
[Address] EAT @explorer.exe (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2412)
[Address] EAT @explorer.exe (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBFF21)
[Address] EAT @explorer.exe (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE23B1)
[Address] EAT @explorer.exe (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB86E9)
[Address] EAT @explorer.exe (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC06E2)
[Address] EAT @explorer.exe (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBCDB1)
[Address] EAT @explorer.exe (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2350)
[Address] EAT @explorer.exe (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DD3FBB)
[Address] EAT @explorer.exe (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC3611)
[Address] EAT @explorer.exe (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC39D9)
[Address] EAT @explorer.exe (GetThemeString) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE22E4)
[Address] EAT @explorer.exe (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE3172)
[Address] EAT @explorer.exe (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DD3274)
[Address] EAT @explorer.exe (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE301E)
[Address] EAT @explorer.exe (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE29C4)
[Address] EAT @explorer.exe (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2BD3)
[Address] EAT @explorer.exe (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE320B)
[Address] EAT @explorer.exe (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2B3F)
[Address] EAT @explorer.exe (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB2D57)
[Address] EAT @explorer.exe (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBF992)
[Address] EAT @explorer.exe (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC1081)
[Address] EAT @explorer.exe (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBDF46)
[Address] EAT @explorer.exe (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC3CE3)
[Address] EAT @explorer.exe (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBF869)
[Address] EAT @explorer.exe (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB2E9A)
[Address] EAT @explorer.exe (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBF785)
[Address] EAT @explorer.exe (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB60AB)
[Address] EAT @explorer.exe (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE312B)
[Address] EAT @explorer.exe (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB85B4)
[Address] EAT @explorer.exe (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB73D2)
[Address] EAT @explorer.exe (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DD3D43)
[Address] EAT @explorer.exe (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE3296)
[Address] EAT @explorer.exe (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC0134)
[Address] EAT @explorer.exe (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DCCFE6)
[Address] EAT @explorer.exe (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBB176)
[Address] EAT @explorer.exe (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE068D)
[Address] EAT @explorer.exe (DllCanUnloadNow) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70952B3B)
[Address] EAT @explorer.exe (DllGetClassObject) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096188E)
[Address] EAT @explorer.exe (DllGetVersion) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70952982)
[Address] EAT @explorer.exe (DllRegisterServer) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709E7DC5)
[Address] EAT @explorer.exe (DllUnregisterServer) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709E818F)
[Address] EAT @explorer.exe (Migrate10CachedPackagesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EC744)
[Address] EAT @explorer.exe (Migrate10CachedPackagesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EE1AC)
[Address] EAT @explorer.exe (MsiAdvertiseProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F257F)
[Address] EAT @explorer.exe (MsiAdvertiseProductExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F27D7)
[Address] EAT @explorer.exe (MsiAdvertiseProductExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED6C1)
[Address] EAT @explorer.exe (MsiAdvertiseProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED46F)
[Address] EAT @explorer.exe (MsiAdvertiseScriptA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F8A3F)
[Address] EAT @explorer.exe (MsiAdvertiseScriptW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FB641)
[Address] EAT @explorer.exe (MsiApplyMultiplePatchesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A05903)
[Address] EAT @explorer.exe (MsiApplyMultiplePatchesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01057)
[Address] EAT @explorer.exe (MsiApplyPatchA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F2D5D)
[Address] EAT @explorer.exe (MsiApplyPatchW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED943)
[Address] EAT @explorer.exe (MsiBeginTransactionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A09441)
[Address] EAT @explorer.exe (MsiBeginTransactionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A039D4)
[Address] EAT @explorer.exe (MsiCloseAllHandles) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A100C3)
[Address] EAT @explorer.exe (MsiCloseHandle) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10015)
[Address] EAT @explorer.exe (MsiCollectUserInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1C3A)
[Address] EAT @explorer.exe (MsiCollectUserInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED16F)
[Address] EAT @explorer.exe (MsiConfigureFeatureA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1D5A)
[Address] EAT @explorer.exe (MsiConfigureFeatureFromDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FD70A)
[Address] EAT @explorer.exe (MsiConfigureFeatureFromDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FE41B)
[Address] EAT @explorer.exe (MsiConfigureFeatureW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED2B7)
[Address] EAT @explorer.exe (MsiConfigureProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF256)
[Address] EAT @explorer.exe (MsiConfigureProductExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FDACA)
[Address] EAT @explorer.exe (MsiConfigureProductExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FE891)
[Address] EAT @explorer.exe (MsiConfigureProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF581)
[Address] EAT @explorer.exe (MsiCreateAndVerifyInstallerDirectory) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096B2E1)
[Address] EAT @explorer.exe (MsiCreateRecord) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11514)
[Address] EAT @explorer.exe (MsiCreateTransformSummaryInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A155D1)
[Address] EAT @explorer.exe (MsiCreateTransformSummaryInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A148EF)
[Address] EAT @explorer.exe (MsiDatabaseApplyTransformA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A148A9)
[Address] EAT @explorer.exe (MsiDatabaseApplyTransformW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11397)
[Address] EAT @explorer.exe (MsiDatabaseCommit) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10DEB)
[Address] EAT @explorer.exe (MsiDatabaseExportA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14792)
[Address] EAT @explorer.exe (MsiDatabaseExportW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11008)
[Address] EAT @explorer.exe (MsiDatabaseGenerateTransformA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1485D)
[Address] EAT @explorer.exe (MsiDatabaseGenerateTransformW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11270)
[Address] EAT @explorer.exe (MsiDatabaseGetPrimaryKeysA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A145FD)
[Address] EAT @explorer.exe (MsiDatabaseGetPrimaryKeysW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13C54)
[Address] EAT @explorer.exe (MsiDatabaseImportA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1472E)
[Address] EAT @explorer.exe (MsiDatabaseImportW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10F1E)
[Address] EAT @explorer.exe (MsiDatabaseIsTablePersistentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14643)
[Address] EAT @explorer.exe (MsiDatabaseIsTablePersistentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10C8F)
[Address] EAT @explorer.exe (MsiDatabaseMergeA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14817)
[Address] EAT @explorer.exe (MsiDatabaseMergeW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11111)
[Address] EAT @explorer.exe (MsiDatabaseOpenViewA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A145B7)
[Address] EAT @explorer.exe (MsiDatabaseOpenViewW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A102B7)
[Address] EAT @explorer.exe (MsiDecomposeDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FDA7B)
[Address] EAT @explorer.exe (MsiDecomposeDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70946286)
[Address] EAT @explorer.exe (MsiDeleteUserDataA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FA367)
[Address] EAT @explorer.exe (MsiDeleteUserDataW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F69EB)
[Address] EAT @explorer.exe (MsiDetermineApplicablePatchesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0D4C5)
[Address] EAT @explorer.exe (MsiDetermineApplicablePatchesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0C559)
[Address] EAT @explorer.exe (MsiDeterminePatchSequenceA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0D9D9)
[Address] EAT @explorer.exe (MsiDeterminePatchSequenceW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0C9E1)
[Address] EAT @explorer.exe (MsiDoActionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1613D)
[Address] EAT @explorer.exe (MsiDoActionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12D61)
[Address] EAT @explorer.exe (MsiEnableLogA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F189B)
[Address] EAT @explorer.exe (MsiEnableLogW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EFBE9)
[Address] EAT @explorer.exe (MsiEnableUIPreview) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A139CD)
[Address] EAT @explorer.exe (MsiEndTransaction) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A03E11)
[Address] EAT @explorer.exe (MsiEnumClientsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096EC96)
[Address] EAT @explorer.exe (MsiEnumClientsExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A05D6E)
[Address] EAT @explorer.exe (MsiEnumClientsExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A013A7)
[Address] EAT @explorer.exe (MsiEnumClientsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70953647)
[Address] EAT @explorer.exe (MsiEnumComponentCostsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17847)
[Address] EAT @explorer.exe (MsiEnumComponentCostsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17A95)
[Address] EAT @explorer.exe (MsiEnumComponentQualifiersA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FCD6D)
[Address] EAT @explorer.exe (MsiEnumComponentQualifiersW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7095384D)
[Address] EAT @explorer.exe (MsiEnumComponentsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F91B9)
[Address] EAT @explorer.exe (MsiEnumComponentsExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A05B08)
[Address] EAT @explorer.exe (MsiEnumComponentsExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0121D)
[Address] EAT @explorer.exe (MsiEnumComponentsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FBA57)
[Address] EAT @explorer.exe (MsiEnumFeaturesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F9C04)
[Address] EAT @explorer.exe (MsiEnumFeaturesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FC259)
[Address] EAT @explorer.exe (MsiEnumPatchesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A097EB)
[Address] EAT @explorer.exe (MsiEnumPatchesExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A04897)
[Address] EAT @explorer.exe (MsiEnumPatchesExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A00E79)
[Address] EAT @explorer.exe (MsiEnumPatchesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0468E)
[Address] EAT @explorer.exe (MsiEnumProductsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F9175)
[Address] EAT @explorer.exe (MsiEnumProductsExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A06313)
[Address] EAT @explorer.exe (MsiEnumProductsExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01729)
[Address] EAT @explorer.exe (MsiEnumProductsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7095559D)
[Address] EAT @explorer.exe (MsiEnumRelatedProductsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F9109)
[Address] EAT @explorer.exe (MsiEnumRelatedProductsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FB9EB)
[Address] EAT @explorer.exe (MsiEvaluateConditionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A161C6)
[Address] EAT @explorer.exe (MsiEvaluateConditionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A130C1)
[Address] EAT @explorer.exe (MsiExtractPatchXMLDataA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A04FAE)
[Address] EAT @explorer.exe (MsiExtractPatchXMLDataW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A04C22)
[Address] EAT @explorer.exe (MsiFormatRecordA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12A73)
[Address] EAT @explorer.exe (MsiFormatRecordW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12BF9)
[Address] EAT @explorer.exe (MsiGetActiveDatabase) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12639)
[Address] EAT @explorer.exe (MsiGetComponentPathA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FEEBD)
[Address] EAT @explorer.exe (MsiGetComponentPathExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A06053)
[Address] EAT @explorer.exe (MsiGetComponentPathExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01559)
[Address] EAT @explorer.exe (MsiGetComponentPathW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709462DD)
[Address] EAT @explorer.exe (MsiGetComponentStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A171E3)
[Address] EAT @explorer.exe (MsiGetComponentStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A172DC)
[Address] EAT @explorer.exe (MsiGetDatabaseState) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10ED9)
[Address] EAT @explorer.exe (MsiGetFeatureCostA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A175FD)
[Address] EAT @explorer.exe (MsiGetFeatureCostW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17702)
[Address] EAT @explorer.exe (MsiGetFeatureInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F0D1A)
[Address] EAT @explorer.exe (MsiGetFeatureInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF5EE)
[Address] EAT @explorer.exe (MsiGetFeatureStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16CD5)
[Address] EAT @explorer.exe (MsiGetFeatureStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16DC3)
[Address] EAT @explorer.exe (MsiGetFeatureUsageA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FA111)
[Address] EAT @explorer.exe (MsiGetFeatureUsageW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FC9BD)
[Address] EAT @explorer.exe (MsiGetFeatureValidStatesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17CC5)
[Address] EAT @explorer.exe (MsiGetFeatureValidStatesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A136EC)
[Address] EAT @explorer.exe (MsiGetFileHashA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1214)
[Address] EAT @explorer.exe (MsiGetFileHashW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECA49)
[Address] EAT @explorer.exe (MsiGetFileSignatureInformationA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F128C)
[Address] EAT @explorer.exe (MsiGetFileSignatureInformationW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECA9F)
[Address] EAT @explorer.exe (MsiGetFileVersionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F0EF8)
[Address] EAT @explorer.exe (MsiGetFileVersionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F3D2F)
[Address] EAT @explorer.exe (MsiGetLanguage) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12727)
[Address] EAT @explorer.exe (MsiGetLastErrorRecord) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11D69)
[Address] EAT @explorer.exe (MsiGetMode) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1279F)
[Address] EAT @explorer.exe (MsiGetPatchFileListA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0D25D)
[Address] EAT @explorer.exe (MsiGetPatchFileListW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A08B6E)
[Address] EAT @explorer.exe (MsiGetPatchInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FA24F)
[Address] EAT @explorer.exe (MsiGetPatchInfoExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A055E9)
[Address] EAT @explorer.exe (MsiGetPatchInfoExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A05177)
[Address] EAT @explorer.exe (MsiGetPatchInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FCAFB)
[Address] EAT @explorer.exe (MsiGetProductCodeA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096EADC)
[Address] EAT @explorer.exe (MsiGetProductCodeFromPackageCodeA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FED5F)
[Address] EAT @explorer.exe (MsiGetProductCodeFromPackageCodeW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF353)
[Address] EAT @explorer.exe (MsiGetProductCodeW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096EE6C)
[Address] EAT @explorer.exe (MsiGetProductInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FD362)
[Address] EAT @explorer.exe (MsiGetProductInfoExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A065DE)
[Address] EAT @explorer.exe (MsiGetProductInfoExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A018FF)
[Address] EAT @explorer.exe (MsiGetProductInfoFromScriptA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F0880)
[Address] EAT @explorer.exe (MsiGetProductInfoFromScriptW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF132)
[Address] EAT @explorer.exe (MsiGetProductInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954273)
[Address] EAT @explorer.exe (MsiGetProductPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F0B90)
[Address] EAT @explorer.exe (MsiGetProductPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF48B)
[Address] EAT @explorer.exe (MsiGetPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1596D)
[Address] EAT @explorer.exe (MsiGetPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15BA3)
[Address] EAT @explorer.exe (MsiGetShortcutTargetA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F2A58)
[Address] EAT @explorer.exe (MsiGetShortcutTargetW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F4689)
[Address] EAT @explorer.exe (MsiGetSourcePathA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16209)
[Address] EAT @explorer.exe (MsiGetSourcePathW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1640D)
[Address] EAT @explorer.exe (MsiGetSummaryInformationA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A158BD)
[Address] EAT @explorer.exe (MsiGetSummaryInformationW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14293)
[Address] EAT @explorer.exe (MsiGetTargetPathA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A165F5)
[Address] EAT @explorer.exe (MsiGetTargetPathW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A167F9)
[Address] EAT @explorer.exe (MsiGetUserInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F91FE)
[Address] EAT @explorer.exe (MsiGetUserInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096E466)
[Address] EAT @explorer.exe (MsiInstallMissingComponentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F22C7)
[Address] EAT @explorer.exe (MsiInstallMissingComponentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F43D9)
[Address] EAT @explorer.exe (MsiInstallMissingFileA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F2067)
[Address] EAT @explorer.exe (MsiInstallMissingFileW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F4179)
[Address] EAT @explorer.exe (MsiInstallProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F197E)
[Address] EAT @explorer.exe (MsiInstallProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECE4B)
[Address] EAT @explorer.exe (MsiInvalidateFeatureCache) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709AD1D3)
[Address] EAT @explorer.exe (MsiIsProductElevatedA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F3306)
[Address] EAT @explorer.exe (MsiIsProductElevatedW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F4A5D)
[Address] EAT @explorer.exe (MsiJoinTransaction) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A03FEB)
[Address] EAT @explorer.exe (MsiLoadStringA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F141F)
[Address] EAT @explorer.exe (MsiLoadStringW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7095AE09)
[Address] EAT @explorer.exe (MsiLocateComponentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF19F)
[Address] EAT @explorer.exe (MsiLocateComponentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF4CA)
[Address] EAT @explorer.exe (MsiMessageBoxA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F16DA)
[Address] EAT @explorer.exe (MsiMessageBoxExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1528)
[Address] EAT @explorer.exe (MsiMessageBoxExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECCB1)
[Address] EAT @explorer.exe (MsiMessageBoxW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECE24)
[Address] EAT @explorer.exe (MsiNotifySidChangeA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FA306)
[Address] EAT @explorer.exe (MsiNotifySidChangeW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F501B)
[Address] EAT @explorer.exe (MsiOpenDatabaseA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14691)
[Address] EAT @explorer.exe (MsiOpenDatabaseW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13D8D)
[Address] EAT @explorer.exe (MsiOpenPackageA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EEDC0)
[Address] EAT @explorer.exe (MsiOpenPackageExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EC63E)
[Address] EAT @explorer.exe (MsiOpenPackageExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EC8E9)
[Address] EAT @explorer.exe (MsiOpenPackageW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF7AB)
[Address] EAT @explorer.exe (MsiOpenProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F8BF2)
[Address] EAT @explorer.exe (MsiOpenProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FB857)
[Address] EAT @explorer.exe (MsiPreviewBillboardA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17D4E)
[Address] EAT @explorer.exe (MsiPreviewBillboardW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13AEA)
[Address] EAT @explorer.exe (MsiPreviewDialogA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17D0B)
[Address] EAT @explorer.exe (MsiPreviewDialogW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13A96)
[Address] EAT @explorer.exe (MsiProcessAdvertiseScriptA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FCBB2)
[Address] EAT @explorer.exe (MsiProcessAdvertiseScriptW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FDF39)
[Address] EAT @explorer.exe (MsiProcessMessage) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12F51)
[Address] EAT @explorer.exe (MsiProvideAssemblyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FFD5D)
[Address] EAT @explorer.exe (MsiProvideAssemblyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A00765)
[Address] EAT @explorer.exe (MsiProvideComponentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF7B9)
[Address] EAT @explorer.exe (MsiProvideComponentFromDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FFAB3)
[Address] EAT @explorer.exe (MsiProvideComponentFromDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954F84)
[Address] EAT @explorer.exe (MsiProvideComponentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0030C)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096C385)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096D411)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70948A47)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70948C86)
[Address] EAT @explorer.exe (MsiQueryComponentStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0687C)
[Address] EAT @explorer.exe (MsiQueryComponentStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01AE1)
[Address] EAT @explorer.exe (MsiQueryFeatureStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF6F1)
[Address] EAT @explorer.exe (MsiQueryFeatureStateExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A06A94)
[Address] EAT @explorer.exe (MsiQueryFeatureStateExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01CD9)
[Address] EAT @explorer.exe (MsiQueryFeatureStateFromDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FFC02)
[Address] EAT @explorer.exe (MsiQueryFeatureStateFromDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0057D)
[Address] EAT @explorer.exe (MsiQueryFeatureStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7094617D)
[Address] EAT @explorer.exe (MsiQueryProductStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FD45D)
[Address] EAT @explorer.exe (MsiQueryProductStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709549FE)
[Address] EAT @explorer.exe (MsiRecordClearData) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11D27)
[Address] EAT @explorer.exe (MsiRecordDataSize) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A116E5)
[Address] EAT @explorer.exe (MsiRecordGetFieldCount) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11916)
[Address] EAT @explorer.exe (MsiRecordGetInteger) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A118B5)
[Address] EAT @explorer.exe (MsiRecordGetStringA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13F1D)
[Address] EAT @explorer.exe (MsiRecordGetStringW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A140CC)
[Address] EAT @explorer.exe (MsiRecordIsNull) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A115F5)
[Address] EAT @explorer.exe (MsiRecordReadStream) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11B6D)
[Address] EAT @explorer.exe (MsiRecordSetInteger) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A117C2)
[Address] EAT @explorer.exe (MsiRecordSetStreamA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15877)
[Address] EAT @explorer.exe (MsiRecordSetStreamW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11A03)
[Address] EAT @explorer.exe (MsiRecordSetStringA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1561D)
[Address] EAT @explorer.exe (MsiRecordSetStringW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1572E)
[Address] EAT @explorer.exe (MsiReinstallFeatureA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1EDE)
[Address] EAT @explorer.exe (MsiReinstallFeatureFromDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FD8C2)
[Address] EAT @explorer.exe (MsiReinstallFeatureFromDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FE657)
[Address] EAT @explorer.exe (MsiReinstallFeatureW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70958C24)
[Address] EAT @explorer.exe (MsiReinstallProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1AFE)
[Address] EAT @explorer.exe (MsiReinstallProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECFF1)
[Address] EAT @explorer.exe (MsiRemovePatchesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A09606)
[Address] EAT @explorer.exe (MsiRemovePatchesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A03702)
[Address] EAT @explorer.exe (MsiSequenceA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16180)
[Address] EAT @explorer.exe (MsiSequenceW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12E4B)
[Address] EAT @explorer.exe (MsiSetComponentStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A173EB)
[Address] EAT @explorer.exe (MsiSetComponentStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A174E5)
[Address] EAT @explorer.exe (MsiSetExternalUIA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EC72F)
[Address] EAT @explorer.exe (MsiSetExternalUIRecord) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0336B)
[Address] EAT @explorer.exe (MsiSetExternalUIW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954E86)
[Address] EAT @explorer.exe (MsiSetFeatureAttributesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17001)
[Address] EAT @explorer.exe (MsiSetFeatureAttributesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A170B4)
[Address] EAT @explorer.exe (MsiSetFeatureStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16E2D)
[Address] EAT @explorer.exe (MsiSetFeatureStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16EDF)
[Address] EAT @explorer.exe (MsiSetInstallLevel) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13424)
[Address] EAT @explorer.exe (MsiSetInternalUI) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954FE6)
[Address] EAT @explorer.exe (MsiSetMode) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A128BB)
[Address] EAT @explorer.exe (MsiSetOfflineContextW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A18485)
[Address] EAT @explorer.exe (MsiSetPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15DC1)
[Address] EAT @explorer.exe (MsiSetPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15F85)
[Address] EAT @explorer.exe (MsiSetTargetPathA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A169DD)
[Address] EAT @explorer.exe (MsiSetTargetPathW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16B61)
[Address] EAT @explorer.exe (MsiSourceListAddMediaDiskA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07136)
[Address] EAT @explorer.exe (MsiSourceListAddMediaDiskW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02165)
[Address] EAT @explorer.exe (MsiSourceListAddSourceA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F3037)
[Address] EAT @explorer.exe (MsiSourceListAddSourceExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A06F13)
[Address] EAT @explorer.exe (MsiSourceListAddSourceExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01F43)
[Address] EAT @explorer.exe (MsiSourceListAddSourceW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EDC51)
[Address] EAT @explorer.exe (MsiSourceListClearAllA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F2EF0)
[Address] EAT @explorer.exe (MsiSourceListClearAllExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07875)
[Address] EAT @explorer.exe (MsiSourceListClearAllExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0281B)
[Address] EAT @explorer.exe (MsiSourceListClearAllW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EDAEB)
[Address] EAT @explorer.exe (MsiSourceListClearMediaDiskA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0764A)
[Address] EAT @explorer.exe (MsiSourceListClearMediaDiskW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0260D)
[Address] EAT @explorer.exe (MsiSourceListClearSourceA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07436)
[Address] EAT @explorer.exe (MsiSourceListClearSourceW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02405)
[Address] EAT @explorer.exe (MsiSourceListEnumMediaDisksA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0834E)
[Address] EAT @explorer.exe (MsiSourceListEnumMediaDisksW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A031B5)
[Address] EAT @explorer.exe (MsiSourceListEnumSourcesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07C4B)
[Address] EAT @explorer.exe (MsiSourceListEnumSourcesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02C07)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F31B8)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07A6C)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02A09)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EDDDB)
[Address] EAT @explorer.exe (MsiSourceListGetInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07E30)
[Address] EAT @explorer.exe (MsiSourceListGetInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02DB5)
[Address] EAT @explorer.exe (MsiSourceListSetInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A080F8)
[Address] EAT @explorer.exe (MsiSourceListSetInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02FAB)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A121B9)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyCount) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11E3D)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1238B)
[Address] EAT @explorer.exe (MsiSummaryInfoPersist) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12551)
[Address] EAT @explorer.exe (MsiSummaryInfoSetPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15906)
[Address] EAT @explorer.exe (MsiSummaryInfoSetPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11F2B)
[Address] EAT @explorer.exe (MsiUseFeatureA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A00D83)
[Address] EAT @explorer.exe (MsiUseFeatureExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF9E8)
[Address] EAT @explorer.exe (MsiUseFeatureExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954D3A)
[Address] EAT @explorer.exe (MsiUseFeatureW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A00DA0)
[Address] EAT @explorer.exe (MsiVerifyDiskSpace) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13863)
[Address] EAT @explorer.exe (MsiVerifyPackageA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F07AA)
[Address] EAT @explorer.exe (MsiVerifyPackageW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF097)
[Address] EAT @explorer.exe (MsiViewClose) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10BAF)
[Address] EAT @explorer.exe (MsiViewExecute) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1070F)
[Address] EAT @explorer.exe (MsiViewFetch) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10833)
[Address] EAT @explorer.exe (MsiViewGetColumnInfo) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10A91)
[Address] EAT @explorer.exe (MsiViewGetErrorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A103F1)
[Address] EAT @explorer.exe (MsiViewGetErrorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A105CE)
[Address] EAT @explorer.exe (MsiViewModify) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1093F)
[Address] EAT @explorer.exe (QueryInstanceCount) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70952B2A)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9320325AS +++++
--- User ---
[MBR] 6a74d79c3934a420244168f6dbf4cd4b
[BSP] 120f8dbfec7e060edd67e66349e0b01c : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 102400 MB
1 - [XXXXXX] FAT32 (0x1b) [HIDDEN!] Offset (sectors): 209717248 | Size: 15360 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 241174528 | Size: 187467 MB
3 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 625106944 | Size: 16 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Multiple Card Reader USB Device +++++
Error reading User MBR! ([0x15] Za?ízení není p?ipraveno. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )

Dokončeno : << RKreport[0]_S_04212014_114149.txt >>

#14 Příspěvek od **Márty84** » 21 dub 2014 10:49

patricie píše:jinak moc děkuji že mi pomáháte, nevím co bych si s tím počala

Nemate zac

Jen doufam, ze se nam to povede vyresit

Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

patricie · #15 Příspěvek od **patricie** » 21 dub 2014 11:10

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : user [Práva správce]
Mód : Odebrat -- Datum : 04/21/2014 12:07:33
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] EAT @explorer.exe (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC09AE)
[Address] EAT @explorer.exe (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB49A1)
[Address] EAT @explorer.exe (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE0731)
[Address] EAT @explorer.exe (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB6395)
[Address] EAT @explorer.exe (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB940E)
[Address] EAT @explorer.exe (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC08ED)
[Address] EAT @explorer.exe (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DCE6B3)
[Address] EAT @explorer.exe (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DCD395)
[Address] EAT @explorer.exe (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB94AB)
[Address] EAT @explorer.exe (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB6A18)
[Address] EAT @explorer.exe (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB3982)
[Address] EAT @explorer.exe (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DCD9DA)
[Address] EAT @explorer.exe (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DD3B52)
[Address] EAT @explorer.exe (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE35E7)
[Address] EAT @explorer.exe (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB53E5)
[Address] EAT @explorer.exe (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB51BF)
[Address] EAT @explorer.exe (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB4EA1)
[Address] EAT @explorer.exe (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB63E6)
[Address] EAT @explorer.exe (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBFCAF)
[Address] EAT @explorer.exe (EnableTheming) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2FEB)
[Address] EAT @explorer.exe (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB3F9A)
[Address] EAT @explorer.exe (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB3F9A)
[Address] EAT @explorer.exe (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE06CC)
[Address] EAT @explorer.exe (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB4BAF)
[Address] EAT @explorer.exe (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC04BC)
[Address] EAT @explorer.exe (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC0473)
[Address] EAT @explorer.exe (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2E7F)
[Address] EAT @explorer.exe (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC05DD)
[Address] EAT @explorer.exe (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC0FB1)
[Address] EAT @explorer.exe (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBCD2E)
[Address] EAT @explorer.exe (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBF8BF)
[Address] EAT @explorer.exe (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC165D)
[Address] EAT @explorer.exe (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBBF93)
[Address] EAT @explorer.exe (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB7C1F)
[Address] EAT @explorer.exe (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2932)
[Address] EAT @explorer.exe (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2412)
[Address] EAT @explorer.exe (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBFF21)
[Address] EAT @explorer.exe (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB616C)
[Address] EAT @explorer.exe (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE23B1)
[Address] EAT @explorer.exe (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB86E9)
[Address] EAT @explorer.exe (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC06E2)
[Address] EAT @explorer.exe (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBCDB1)
[Address] EAT @explorer.exe (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2350)
[Address] EAT @explorer.exe (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DD3FBB)
[Address] EAT @explorer.exe (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC3611)
[Address] EAT @explorer.exe (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC39D9)
[Address] EAT @explorer.exe (GetThemeString) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE22E4)
[Address] EAT @explorer.exe (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE3172)
[Address] EAT @explorer.exe (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DD3274)
[Address] EAT @explorer.exe (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE301E)
[Address] EAT @explorer.exe (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE29C4)
[Address] EAT @explorer.exe (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2BD3)
[Address] EAT @explorer.exe (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE320B)
[Address] EAT @explorer.exe (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE2B3F)
[Address] EAT @explorer.exe (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB2D57)
[Address] EAT @explorer.exe (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBF992)
[Address] EAT @explorer.exe (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC1081)
[Address] EAT @explorer.exe (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBDF46)
[Address] EAT @explorer.exe (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC3CE3)
[Address] EAT @explorer.exe (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBF869)
[Address] EAT @explorer.exe (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB2E9A)
[Address] EAT @explorer.exe (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBF785)
[Address] EAT @explorer.exe (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB60AB)
[Address] EAT @explorer.exe (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE312B)
[Address] EAT @explorer.exe (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB85B4)
[Address] EAT @explorer.exe (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DB73D2)
[Address] EAT @explorer.exe (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DD3D43)
[Address] EAT @explorer.exe (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE3296)
[Address] EAT @explorer.exe (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DC0134)
[Address] EAT @explorer.exe (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DCCFE6)
[Address] EAT @explorer.exe (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DBB176)
[Address] EAT @explorer.exe (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\windows\system32\UxTheme.dll @ 0x73DE068D)
[Address] EAT @explorer.exe (DllCanUnloadNow) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70952B3B)
[Address] EAT @explorer.exe (DllGetClassObject) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096188E)
[Address] EAT @explorer.exe (DllGetVersion) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70952982)
[Address] EAT @explorer.exe (DllRegisterServer) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709E7DC5)
[Address] EAT @explorer.exe (DllUnregisterServer) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709E818F)
[Address] EAT @explorer.exe (Migrate10CachedPackagesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EC744)
[Address] EAT @explorer.exe (Migrate10CachedPackagesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EE1AC)
[Address] EAT @explorer.exe (MsiAdvertiseProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F257F)
[Address] EAT @explorer.exe (MsiAdvertiseProductExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F27D7)
[Address] EAT @explorer.exe (MsiAdvertiseProductExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED6C1)
[Address] EAT @explorer.exe (MsiAdvertiseProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED46F)
[Address] EAT @explorer.exe (MsiAdvertiseScriptA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F8A3F)
[Address] EAT @explorer.exe (MsiAdvertiseScriptW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FB641)
[Address] EAT @explorer.exe (MsiApplyMultiplePatchesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A05903)
[Address] EAT @explorer.exe (MsiApplyMultiplePatchesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01057)
[Address] EAT @explorer.exe (MsiApplyPatchA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F2D5D)
[Address] EAT @explorer.exe (MsiApplyPatchW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED943)
[Address] EAT @explorer.exe (MsiBeginTransactionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A09441)
[Address] EAT @explorer.exe (MsiBeginTransactionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A039D4)
[Address] EAT @explorer.exe (MsiCloseAllHandles) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A100C3)
[Address] EAT @explorer.exe (MsiCloseHandle) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10015)
[Address] EAT @explorer.exe (MsiCollectUserInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1C3A)
[Address] EAT @explorer.exe (MsiCollectUserInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED16F)
[Address] EAT @explorer.exe (MsiConfigureFeatureA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1D5A)
[Address] EAT @explorer.exe (MsiConfigureFeatureFromDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FD70A)
[Address] EAT @explorer.exe (MsiConfigureFeatureFromDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FE41B)
[Address] EAT @explorer.exe (MsiConfigureFeatureW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ED2B7)
[Address] EAT @explorer.exe (MsiConfigureProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF256)
[Address] EAT @explorer.exe (MsiConfigureProductExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FDACA)
[Address] EAT @explorer.exe (MsiConfigureProductExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FE891)
[Address] EAT @explorer.exe (MsiConfigureProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF581)
[Address] EAT @explorer.exe (MsiCreateAndVerifyInstallerDirectory) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096B2E1)
[Address] EAT @explorer.exe (MsiCreateRecord) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11514)
[Address] EAT @explorer.exe (MsiCreateTransformSummaryInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A155D1)
[Address] EAT @explorer.exe (MsiCreateTransformSummaryInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A148EF)
[Address] EAT @explorer.exe (MsiDatabaseApplyTransformA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A148A9)
[Address] EAT @explorer.exe (MsiDatabaseApplyTransformW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11397)
[Address] EAT @explorer.exe (MsiDatabaseCommit) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10DEB)
[Address] EAT @explorer.exe (MsiDatabaseExportA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14792)
[Address] EAT @explorer.exe (MsiDatabaseExportW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11008)
[Address] EAT @explorer.exe (MsiDatabaseGenerateTransformA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1485D)
[Address] EAT @explorer.exe (MsiDatabaseGenerateTransformW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11270)
[Address] EAT @explorer.exe (MsiDatabaseGetPrimaryKeysA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A145FD)
[Address] EAT @explorer.exe (MsiDatabaseGetPrimaryKeysW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13C54)
[Address] EAT @explorer.exe (MsiDatabaseImportA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1472E)
[Address] EAT @explorer.exe (MsiDatabaseImportW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10F1E)
[Address] EAT @explorer.exe (MsiDatabaseIsTablePersistentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14643)
[Address] EAT @explorer.exe (MsiDatabaseIsTablePersistentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10C8F)
[Address] EAT @explorer.exe (MsiDatabaseMergeA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14817)
[Address] EAT @explorer.exe (MsiDatabaseMergeW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11111)
[Address] EAT @explorer.exe (MsiDatabaseOpenViewA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A145B7)
[Address] EAT @explorer.exe (MsiDatabaseOpenViewW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A102B7)
[Address] EAT @explorer.exe (MsiDecomposeDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FDA7B)
[Address] EAT @explorer.exe (MsiDecomposeDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70946286)
[Address] EAT @explorer.exe (MsiDeleteUserDataA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FA367)
[Address] EAT @explorer.exe (MsiDeleteUserDataW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F69EB)
[Address] EAT @explorer.exe (MsiDetermineApplicablePatchesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0D4C5)
[Address] EAT @explorer.exe (MsiDetermineApplicablePatchesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0C559)
[Address] EAT @explorer.exe (MsiDeterminePatchSequenceA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0D9D9)
[Address] EAT @explorer.exe (MsiDeterminePatchSequenceW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0C9E1)
[Address] EAT @explorer.exe (MsiDoActionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1613D)
[Address] EAT @explorer.exe (MsiDoActionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12D61)
[Address] EAT @explorer.exe (MsiEnableLogA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F189B)
[Address] EAT @explorer.exe (MsiEnableLogW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EFBE9)
[Address] EAT @explorer.exe (MsiEnableUIPreview) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A139CD)
[Address] EAT @explorer.exe (MsiEndTransaction) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A03E11)
[Address] EAT @explorer.exe (MsiEnumClientsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096EC96)
[Address] EAT @explorer.exe (MsiEnumClientsExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A05D6E)
[Address] EAT @explorer.exe (MsiEnumClientsExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A013A7)
[Address] EAT @explorer.exe (MsiEnumClientsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70953647)
[Address] EAT @explorer.exe (MsiEnumComponentCostsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17847)
[Address] EAT @explorer.exe (MsiEnumComponentCostsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17A95)
[Address] EAT @explorer.exe (MsiEnumComponentQualifiersA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FCD6D)
[Address] EAT @explorer.exe (MsiEnumComponentQualifiersW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7095384D)
[Address] EAT @explorer.exe (MsiEnumComponentsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F91B9)
[Address] EAT @explorer.exe (MsiEnumComponentsExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A05B08)
[Address] EAT @explorer.exe (MsiEnumComponentsExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0121D)
[Address] EAT @explorer.exe (MsiEnumComponentsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FBA57)
[Address] EAT @explorer.exe (MsiEnumFeaturesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F9C04)
[Address] EAT @explorer.exe (MsiEnumFeaturesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FC259)
[Address] EAT @explorer.exe (MsiEnumPatchesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A097EB)
[Address] EAT @explorer.exe (MsiEnumPatchesExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A04897)
[Address] EAT @explorer.exe (MsiEnumPatchesExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A00E79)
[Address] EAT @explorer.exe (MsiEnumPatchesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0468E)
[Address] EAT @explorer.exe (MsiEnumProductsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F9175)
[Address] EAT @explorer.exe (MsiEnumProductsExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A06313)
[Address] EAT @explorer.exe (MsiEnumProductsExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01729)
[Address] EAT @explorer.exe (MsiEnumProductsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7095559D)
[Address] EAT @explorer.exe (MsiEnumRelatedProductsA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F9109)
[Address] EAT @explorer.exe (MsiEnumRelatedProductsW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FB9EB)
[Address] EAT @explorer.exe (MsiEvaluateConditionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A161C6)
[Address] EAT @explorer.exe (MsiEvaluateConditionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A130C1)
[Address] EAT @explorer.exe (MsiExtractPatchXMLDataA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A04FAE)
[Address] EAT @explorer.exe (MsiExtractPatchXMLDataW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A04C22)
[Address] EAT @explorer.exe (MsiFormatRecordA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12A73)
[Address] EAT @explorer.exe (MsiFormatRecordW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12BF9)
[Address] EAT @explorer.exe (MsiGetActiveDatabase) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12639)
[Address] EAT @explorer.exe (MsiGetComponentPathA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FEEBD)
[Address] EAT @explorer.exe (MsiGetComponentPathExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A06053)
[Address] EAT @explorer.exe (MsiGetComponentPathExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01559)
[Address] EAT @explorer.exe (MsiGetComponentPathW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709462DD)
[Address] EAT @explorer.exe (MsiGetComponentStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A171E3)
[Address] EAT @explorer.exe (MsiGetComponentStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A172DC)
[Address] EAT @explorer.exe (MsiGetDatabaseState) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10ED9)
[Address] EAT @explorer.exe (MsiGetFeatureCostA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A175FD)
[Address] EAT @explorer.exe (MsiGetFeatureCostW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17702)
[Address] EAT @explorer.exe (MsiGetFeatureInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F0D1A)
[Address] EAT @explorer.exe (MsiGetFeatureInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF5EE)
[Address] EAT @explorer.exe (MsiGetFeatureStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16CD5)
[Address] EAT @explorer.exe (MsiGetFeatureStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16DC3)
[Address] EAT @explorer.exe (MsiGetFeatureUsageA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FA111)
[Address] EAT @explorer.exe (MsiGetFeatureUsageW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FC9BD)
[Address] EAT @explorer.exe (MsiGetFeatureValidStatesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17CC5)
[Address] EAT @explorer.exe (MsiGetFeatureValidStatesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A136EC)
[Address] EAT @explorer.exe (MsiGetFileHashA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1214)
[Address] EAT @explorer.exe (MsiGetFileHashW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECA49)
[Address] EAT @explorer.exe (MsiGetFileSignatureInformationA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F128C)
[Address] EAT @explorer.exe (MsiGetFileSignatureInformationW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECA9F)
[Address] EAT @explorer.exe (MsiGetFileVersionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F0EF8)
[Address] EAT @explorer.exe (MsiGetFileVersionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F3D2F)
[Address] EAT @explorer.exe (MsiGetLanguage) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12727)
[Address] EAT @explorer.exe (MsiGetLastErrorRecord) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11D69)
[Address] EAT @explorer.exe (MsiGetMode) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1279F)
[Address] EAT @explorer.exe (MsiGetPatchFileListA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0D25D)
[Address] EAT @explorer.exe (MsiGetPatchFileListW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A08B6E)
[Address] EAT @explorer.exe (MsiGetPatchInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FA24F)
[Address] EAT @explorer.exe (MsiGetPatchInfoExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A055E9)
[Address] EAT @explorer.exe (MsiGetPatchInfoExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A05177)
[Address] EAT @explorer.exe (MsiGetPatchInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FCAFB)
[Address] EAT @explorer.exe (MsiGetProductCodeA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096EADC)
[Address] EAT @explorer.exe (MsiGetProductCodeFromPackageCodeA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FED5F)
[Address] EAT @explorer.exe (MsiGetProductCodeFromPackageCodeW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF353)
[Address] EAT @explorer.exe (MsiGetProductCodeW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096EE6C)
[Address] EAT @explorer.exe (MsiGetProductInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FD362)
[Address] EAT @explorer.exe (MsiGetProductInfoExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A065DE)
[Address] EAT @explorer.exe (MsiGetProductInfoExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A018FF)
[Address] EAT @explorer.exe (MsiGetProductInfoFromScriptA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F0880)
[Address] EAT @explorer.exe (MsiGetProductInfoFromScriptW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF132)
[Address] EAT @explorer.exe (MsiGetProductInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954273)
[Address] EAT @explorer.exe (MsiGetProductPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F0B90)
[Address] EAT @explorer.exe (MsiGetProductPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF48B)
[Address] EAT @explorer.exe (MsiGetPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1596D)
[Address] EAT @explorer.exe (MsiGetPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15BA3)
[Address] EAT @explorer.exe (MsiGetShortcutTargetA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F2A58)
[Address] EAT @explorer.exe (MsiGetShortcutTargetW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F4689)
[Address] EAT @explorer.exe (MsiGetSourcePathA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16209)
[Address] EAT @explorer.exe (MsiGetSourcePathW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1640D)
[Address] EAT @explorer.exe (MsiGetSummaryInformationA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A158BD)
[Address] EAT @explorer.exe (MsiGetSummaryInformationW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14293)
[Address] EAT @explorer.exe (MsiGetTargetPathA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A165F5)
[Address] EAT @explorer.exe (MsiGetTargetPathW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A167F9)
[Address] EAT @explorer.exe (MsiGetUserInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F91FE)
[Address] EAT @explorer.exe (MsiGetUserInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096E466)
[Address] EAT @explorer.exe (MsiInstallMissingComponentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F22C7)
[Address] EAT @explorer.exe (MsiInstallMissingComponentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F43D9)
[Address] EAT @explorer.exe (MsiInstallMissingFileA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F2067)
[Address] EAT @explorer.exe (MsiInstallMissingFileW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F4179)
[Address] EAT @explorer.exe (MsiInstallProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F197E)
[Address] EAT @explorer.exe (MsiInstallProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECE4B)
[Address] EAT @explorer.exe (MsiInvalidateFeatureCache) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709AD1D3)
[Address] EAT @explorer.exe (MsiIsProductElevatedA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F3306)
[Address] EAT @explorer.exe (MsiIsProductElevatedW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F4A5D)
[Address] EAT @explorer.exe (MsiJoinTransaction) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A03FEB)
[Address] EAT @explorer.exe (MsiLoadStringA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F141F)
[Address] EAT @explorer.exe (MsiLoadStringW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7095AE09)
[Address] EAT @explorer.exe (MsiLocateComponentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF19F)
[Address] EAT @explorer.exe (MsiLocateComponentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF4CA)
[Address] EAT @explorer.exe (MsiMessageBoxA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F16DA)
[Address] EAT @explorer.exe (MsiMessageBoxExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1528)
[Address] EAT @explorer.exe (MsiMessageBoxExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECCB1)
[Address] EAT @explorer.exe (MsiMessageBoxW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECE24)
[Address] EAT @explorer.exe (MsiNotifySidChangeA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FA306)
[Address] EAT @explorer.exe (MsiNotifySidChangeW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F501B)
[Address] EAT @explorer.exe (MsiOpenDatabaseA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A14691)
[Address] EAT @explorer.exe (MsiOpenDatabaseW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13D8D)
[Address] EAT @explorer.exe (MsiOpenPackageA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EEDC0)
[Address] EAT @explorer.exe (MsiOpenPackageExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EC63E)
[Address] EAT @explorer.exe (MsiOpenPackageExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EC8E9)
[Address] EAT @explorer.exe (MsiOpenPackageW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF7AB)
[Address] EAT @explorer.exe (MsiOpenProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F8BF2)
[Address] EAT @explorer.exe (MsiOpenProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FB857)
[Address] EAT @explorer.exe (MsiPreviewBillboardA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17D4E)
[Address] EAT @explorer.exe (MsiPreviewBillboardW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13AEA)
[Address] EAT @explorer.exe (MsiPreviewDialogA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17D0B)
[Address] EAT @explorer.exe (MsiPreviewDialogW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13A96)
[Address] EAT @explorer.exe (MsiProcessAdvertiseScriptA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FCBB2)
[Address] EAT @explorer.exe (MsiProcessAdvertiseScriptW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FDF39)
[Address] EAT @explorer.exe (MsiProcessMessage) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12F51)
[Address] EAT @explorer.exe (MsiProvideAssemblyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FFD5D)
[Address] EAT @explorer.exe (MsiProvideAssemblyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A00765)
[Address] EAT @explorer.exe (MsiProvideComponentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF7B9)
[Address] EAT @explorer.exe (MsiProvideComponentFromDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FFAB3)
[Address] EAT @explorer.exe (MsiProvideComponentFromDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954F84)
[Address] EAT @explorer.exe (MsiProvideComponentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0030C)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096C385)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7096D411)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70948A47)
[Address] EAT @explorer.exe (MsiProvideQualifiedComponentW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70948C86)
[Address] EAT @explorer.exe (MsiQueryComponentStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0687C)
[Address] EAT @explorer.exe (MsiQueryComponentStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01AE1)
[Address] EAT @explorer.exe (MsiQueryFeatureStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF6F1)
[Address] EAT @explorer.exe (MsiQueryFeatureStateExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A06A94)
[Address] EAT @explorer.exe (MsiQueryFeatureStateExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01CD9)
[Address] EAT @explorer.exe (MsiQueryFeatureStateFromDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FFC02)
[Address] EAT @explorer.exe (MsiQueryFeatureStateFromDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0057D)
[Address] EAT @explorer.exe (MsiQueryFeatureStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x7094617D)
[Address] EAT @explorer.exe (MsiQueryProductStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FD45D)
[Address] EAT @explorer.exe (MsiQueryProductStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709549FE)
[Address] EAT @explorer.exe (MsiRecordClearData) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11D27)
[Address] EAT @explorer.exe (MsiRecordDataSize) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A116E5)
[Address] EAT @explorer.exe (MsiRecordGetFieldCount) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11916)
[Address] EAT @explorer.exe (MsiRecordGetInteger) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A118B5)
[Address] EAT @explorer.exe (MsiRecordGetStringA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13F1D)
[Address] EAT @explorer.exe (MsiRecordGetStringW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A140CC)
[Address] EAT @explorer.exe (MsiRecordIsNull) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A115F5)
[Address] EAT @explorer.exe (MsiRecordReadStream) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11B6D)
[Address] EAT @explorer.exe (MsiRecordSetInteger) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A117C2)
[Address] EAT @explorer.exe (MsiRecordSetStreamA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15877)
[Address] EAT @explorer.exe (MsiRecordSetStreamW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11A03)
[Address] EAT @explorer.exe (MsiRecordSetStringA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1561D)
[Address] EAT @explorer.exe (MsiRecordSetStringW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1572E)
[Address] EAT @explorer.exe (MsiReinstallFeatureA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1EDE)
[Address] EAT @explorer.exe (MsiReinstallFeatureFromDescriptorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FD8C2)
[Address] EAT @explorer.exe (MsiReinstallFeatureFromDescriptorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FE657)
[Address] EAT @explorer.exe (MsiReinstallFeatureW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70958C24)
[Address] EAT @explorer.exe (MsiReinstallProductA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F1AFE)
[Address] EAT @explorer.exe (MsiReinstallProductW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709ECFF1)
[Address] EAT @explorer.exe (MsiRemovePatchesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A09606)
[Address] EAT @explorer.exe (MsiRemovePatchesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A03702)
[Address] EAT @explorer.exe (MsiSequenceA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16180)
[Address] EAT @explorer.exe (MsiSequenceW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12E4B)
[Address] EAT @explorer.exe (MsiSetComponentStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A173EB)
[Address] EAT @explorer.exe (MsiSetComponentStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A174E5)
[Address] EAT @explorer.exe (MsiSetExternalUIA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EC72F)
[Address] EAT @explorer.exe (MsiSetExternalUIRecord) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0336B)
[Address] EAT @explorer.exe (MsiSetExternalUIW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954E86)
[Address] EAT @explorer.exe (MsiSetFeatureAttributesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A17001)
[Address] EAT @explorer.exe (MsiSetFeatureAttributesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A170B4)
[Address] EAT @explorer.exe (MsiSetFeatureStateA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16E2D)
[Address] EAT @explorer.exe (MsiSetFeatureStateW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16EDF)
[Address] EAT @explorer.exe (MsiSetInstallLevel) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13424)
[Address] EAT @explorer.exe (MsiSetInternalUI) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954FE6)
[Address] EAT @explorer.exe (MsiSetMode) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A128BB)
[Address] EAT @explorer.exe (MsiSetOfflineContextW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A18485)
[Address] EAT @explorer.exe (MsiSetPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15DC1)
[Address] EAT @explorer.exe (MsiSetPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15F85)
[Address] EAT @explorer.exe (MsiSetTargetPathA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A169DD)
[Address] EAT @explorer.exe (MsiSetTargetPathW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A16B61)
[Address] EAT @explorer.exe (MsiSourceListAddMediaDiskA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07136)
[Address] EAT @explorer.exe (MsiSourceListAddMediaDiskW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02165)
[Address] EAT @explorer.exe (MsiSourceListAddSourceA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F3037)
[Address] EAT @explorer.exe (MsiSourceListAddSourceExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A06F13)
[Address] EAT @explorer.exe (MsiSourceListAddSourceExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A01F43)
[Address] EAT @explorer.exe (MsiSourceListAddSourceW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EDC51)
[Address] EAT @explorer.exe (MsiSourceListClearAllA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F2EF0)
[Address] EAT @explorer.exe (MsiSourceListClearAllExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07875)
[Address] EAT @explorer.exe (MsiSourceListClearAllExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0281B)
[Address] EAT @explorer.exe (MsiSourceListClearAllW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EDAEB)
[Address] EAT @explorer.exe (MsiSourceListClearMediaDiskA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0764A)
[Address] EAT @explorer.exe (MsiSourceListClearMediaDiskW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0260D)
[Address] EAT @explorer.exe (MsiSourceListClearSourceA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07436)
[Address] EAT @explorer.exe (MsiSourceListClearSourceW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02405)
[Address] EAT @explorer.exe (MsiSourceListEnumMediaDisksA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A0834E)
[Address] EAT @explorer.exe (MsiSourceListEnumMediaDisksW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A031B5)
[Address] EAT @explorer.exe (MsiSourceListEnumSourcesA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07C4B)
[Address] EAT @explorer.exe (MsiSourceListEnumSourcesW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02C07)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F31B8)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07A6C)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02A09)
[Address] EAT @explorer.exe (MsiSourceListForceResolutionW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EDDDB)
[Address] EAT @explorer.exe (MsiSourceListGetInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A07E30)
[Address] EAT @explorer.exe (MsiSourceListGetInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02DB5)
[Address] EAT @explorer.exe (MsiSourceListSetInfoA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A080F8)
[Address] EAT @explorer.exe (MsiSourceListSetInfoW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A02FAB)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A121B9)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyCount) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11E3D)
[Address] EAT @explorer.exe (MsiSummaryInfoGetPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1238B)
[Address] EAT @explorer.exe (MsiSummaryInfoPersist) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A12551)
[Address] EAT @explorer.exe (MsiSummaryInfoSetPropertyA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A15906)
[Address] EAT @explorer.exe (MsiSummaryInfoSetPropertyW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A11F2B)
[Address] EAT @explorer.exe (MsiUseFeatureA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A00D83)
[Address] EAT @explorer.exe (MsiUseFeatureExA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709FF9E8)
[Address] EAT @explorer.exe (MsiUseFeatureExW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70954D3A)
[Address] EAT @explorer.exe (MsiUseFeatureW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A00DA0)
[Address] EAT @explorer.exe (MsiVerifyDiskSpace) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A13863)
[Address] EAT @explorer.exe (MsiVerifyPackageA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709F07AA)
[Address] EAT @explorer.exe (MsiVerifyPackageW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x709EF097)
[Address] EAT @explorer.exe (MsiViewClose) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10BAF)
[Address] EAT @explorer.exe (MsiViewExecute) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1070F)
[Address] EAT @explorer.exe (MsiViewFetch) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10833)
[Address] EAT @explorer.exe (MsiViewGetColumnInfo) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A10A91)
[Address] EAT @explorer.exe (MsiViewGetErrorA) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A103F1)
[Address] EAT @explorer.exe (MsiViewGetErrorW) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A105CE)
[Address] EAT @explorer.exe (MsiViewModify) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70A1093F)
[Address] EAT @explorer.exe (QueryInstanceCount) : authui.dll -> HOOKED (C:\windows\system32\msi.dll @ 0x70952B2A)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9320325AS +++++
--- User ---
[MBR] 6a74d79c3934a420244168f6dbf4cd4b
[BSP] 120f8dbfec7e060edd67e66349e0b01c : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 102400 MB
1 - [XXXXXX] FAT32 (0x1b) [HIDDEN!] Offset (sectors): 209717248 | Size: 15360 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 241174528 | Size: 187467 MB
3 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 625106944 | Size: 16 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Multiple Card Reader USB Device +++++
Error reading User MBR! ([0x15] Za?ízení není p?ipraveno. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )

+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Generic Flash Disk USB Device +++++
--- User ---
[MBR] b0c57246f4089be500dd7488fbf8e93b
[BSP] e33b32cdfca8786fea61fea2a203ef68 : MBR Code unknown
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 736 | Size: 3899 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )

Dokončeno : << RKreport[0]_D_04212014_120733.txt >>
RKreport[0]_D_04212014_120111.txt;RKreport[0]_S_04212014_114149.txt;RKreport[0]_S_04212014_120621.txt

VIRY.CZ

není platná aplikace typu win32, chyba připojení SSL

není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL

Re: není platná aplikace typu win32, chyba připojení SSL