Sujet Précédent Sujet Suivant

DOS/Rovnix.GG / Backdoor.Cidox : Plusieurs internet explorer

Résolu/Fermé
Rickys79 - 20 avril 2014 à 15:57
Rickys79 Messages postés 22 Date d'inscription mardi 22 janvier 2013 Statut Membre Dernière intervention 3 janvier 2017 - 24 avril 2014 à 18:34
Bonjour,

Depuis hier soir j'ai un souci, j'ai remarqué que mon pc s'est mis à ralentir d'un coup. J'ai ouvert le gestionnaire des taches et dans l'onglet processus j'ai vu qu'internet explorer s'ouvrait tout seul de façon répétitive en plusieurs processus.
Je n'utilise jamais IE je ne vais sur internet qu'avec Firefox. J'ai beau terminer les processus IE ils s'ouvrent de nouveau à chaque fois. J'ai passé un coup de CCleaner, Rogue Killer et AntiMalware mais ce virus persiste encore !
Que dois-je faire ? Merci d'avance pour votre aide...


A voir également:

14 réponses

Réponse 1 / 14
Syria456 Messages postés 37 Date d'inscription dimanche 20 avril 2014 Statut Membre Dernière intervention 25 avril 2014 2
Modifié par Syria456 le 20/04/2014 à 16:33
Pourait tu inclure les résultats des scans dans ta prochaine réponse (celui de roguekiller et de AntiMalware) et ensuite nous entamerons une procédure de désinféction plus intense :)

Mais je n'ai pas très bien compris, des fenêtres IE s'ouvrent toutes seul???

Bonne chance!
0
Réponse 2 / 14
Rickys79
20 avril 2014 à 16:48
Voici le rapport de rogue killer :

RogueKiller V8.8.15 [Mar 27 2014] par Adlice Software
mail : http://www.adlice.com/contact/
Remontees : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur : Eric [Droits d'admin]
Mode : Recherche -- Date : 04/20/2014 16:43:52
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 4 ¤¤¤
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Addons navigateur : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [CHARGE] ¤¤¤
[Address] SSDT[107] : NtDeviceIoControlFile @ 0x82E55F37 -> HOOKED (C:\{A3DADA41-8875-4c6c-987E-387A9ED4573D}.sys @ 0x92968BBE)
[Address] ***@*** (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743909AE)
[Address] ***@*** (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743849A1)
[Address] ***@*** (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B0731)
[Address] ***@*** (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74386395)
[Address] ***@*** (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438940E)
[Address] ***@*** (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743908ED)
[Address] ***@*** (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439E6B3)
[Address] ***@*** (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439D395)
[Address] ***@*** (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743894AB)
[Address] ***@*** (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74386A18)
[Address] ***@*** (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74383982)
[Address] ***@*** (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439D9DA)
[Address] ***@*** (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743A3B52)
[Address] ***@*** (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B35E7)
[Address] ***@*** (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743853E5)
[Address] ***@*** (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743851BF)
[Address] ***@*** (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74384EA1)
[Address] ***@*** (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743863E6)
[Address] ***@*** (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438FCAF)
[Address] ***@*** (EnableTheming) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2FEB)
[Address] ***@*** (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74383F9A)
[Address] ***@*** (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74383F9A)
[Address] ***@*** (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B06CC)
[Address] ***@*** (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74384BAF)
[Address] ***@*** (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743904BC)
[Address] ***@*** (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74390473)
[Address] ***@*** (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2E7F)
[Address] ***@*** (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743905DD)
[Address] ***@*** (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74390FB1)
[Address] ***@*** (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438CD2E)
[Address] ***@*** (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438F8BF)
[Address] ***@*** (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439165D)
[Address] ***@*** (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438BF93)
[Address] ***@*** (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74387C1F)
[Address] ***@*** (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2932)
[Address] ***@*** (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2412)
[Address] ***@*** (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438FF21)
[Address] ***@*** (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B23B1)
[Address] ***@*** (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743886E9)
[Address] ***@*** (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743906E2)
[Address] ***@*** (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438CDB1)
[Address] ***@*** (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2350)
[Address] ***@*** (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743A3FBB)
[Address] ***@*** (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74393611)
[Address] ***@*** (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743939D9)
[Address] ***@*** (GetThemeString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B22E4)
[Address] ***@*** (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B3172)
[Address] ***@*** (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743A3274)
[Address] ***@*** (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B301E)
[Address] ***@*** (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B29C4)
[Address] ***@*** (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2BD3)
[Address] ***@*** (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B320B)
[Address] ***@*** (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2B3F)
[Address] ***@*** (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74382D57)
[Address] ***@*** (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438F992)
[Address] ***@*** (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74391081)
[Address] ***@*** (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438DF46)
[Address] ***@*** (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74393CE3)
[Address] ***@*** (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438F869)
[Address] ***@*** (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74382E9A)
[Address] ***@*** (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438F785)
[Address] ***@*** (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743860AB)
[Address] ***@*** (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B312B)
[Address] ***@*** (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743885B4)
[Address] ***@*** (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743873D2)
[Address] ***@*** (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743A3D43)
[Address] ***@*** (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B3296)
[Address] ***@*** (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74390134)
[Address] ***@*** (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439CFE6)
[Address] ***@*** (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438B176)
[Address] ***@*** (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B068D)
[Address] ***@*** (DllGetClassObject) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1CF9D)
[Address] ***@*** (IEnumString_Next_WIC_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E000)
[Address] ***@*** (IEnumString_Reset_WIC_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E029)
[Address] ***@*** (IPropertyBag2_Write_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E049)
[Address] ***@*** (IWICBitmapClipper_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DD2A)
[Address] ***@*** (IWICBitmapCodecInfo_DoesSupportAnimation_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EA9A)
[Address] ***@*** (IWICBitmapCodecInfo_DoesSupportLossless_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EABD)
[Address] ***@*** (IWICBitmapCodecInfo_DoesSupportMultiframe_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EAE0)
[Address] ***@*** (IWICBitmapCodecInfo_GetContainerFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E9D3)
[Address] ***@*** (IWICBitmapCodecInfo_GetDeviceManufacturer_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E9F6)
[Address] ***@*** (IWICBitmapCodecInfo_GetDeviceModels_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EA1F)
[Address] ***@*** (IWICBitmapCodecInfo_GetFileExtensions_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EA71)
[Address] ***@*** (IWICBitmapCodecInfo_GetMimeTypes_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EA48)
[Address] ***@*** (IWICBitmapDecoder_CopyPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D845)
[Address] ***@*** (IWICBitmapDecoder_GetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E9AA)
[Address] ***@*** (IWICBitmapDecoder_GetDecoderInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D822)
[Address] ***@*** (IWICBitmapDecoder_GetFrameCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D9A2)
[Address] ***@*** (IWICBitmapDecoder_GetFrame_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D868)
[Address] ***@*** (IWICBitmapDecoder_GetMetadataQueryReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D8DA)
[Address] ***@*** (IWICBitmapDecoder_GetPreview_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC74)
[Address] ***@*** (IWICBitmapDecoder_GetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E9D3)
[Address] ***@*** (IWICBitmapEncoder_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC05)
[Address] ***@*** (IWICBitmapEncoder_CreateNewFrame_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DB87)
[Address] ***@*** (IWICBitmapEncoder_GetEncoderInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DB5E)
[Address] ***@*** (IWICBitmapEncoder_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D9A2)
[Address] ***@*** (IWICBitmapEncoder_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DB32)
[Address] ***@*** (IWICBitmapEncoder_SetPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DBDC)
[Address] ***@*** (IWICBitmapEncoder_SetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DBB3)
[Address] ***@*** (IWICBitmapFlipRotator_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DD2A)
[Address] ***@*** (IWICBitmapFrameDecode_GetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D88E)
[Address] ***@*** (IWICBitmapFrameDecode_GetMetadataQueryReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D8DA)
[Address] ***@*** (IWICBitmapFrameDecode_GetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D8B7)
[Address] ***@*** (IWICBitmapFrameEncode_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D9C5)
[Address] ***@*** (IWICBitmapFrameEncode_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EB03)
[Address] ***@*** (IWICBitmapFrameEncode_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DFB7)
[Address] ***@*** (IWICBitmapFrameEncode_SetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DB06)
[Address] ***@*** (IWICBitmapFrameEncode_SetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DA17)
[Address] ***@*** (IWICBitmapFrameEncode_SetSize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D9E5)
[Address] ***@*** (IWICBitmapFrameEncode_SetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DADD)
[Address] ***@*** (IWICBitmapFrameEncode_WriteSource_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DA71)
[Address] ***@*** (IWICBitmapLock_GetDataPointer_STA_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D7FC)
[Address] ***@*** (IWICBitmapLock_GetStride_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICBitmapScaler_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DCFE)
[Address] ***@*** (IWICBitmapSource_CopyPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D822)
[Address] ***@*** (IWICBitmapSource_CopyPixels_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC48)
[Address] ***@*** (IWICBitmapSource_GetPixelFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICBitmapSource_GetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D7FC)
[Address] ***@*** (IWICBitmapSource_GetSize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D91D)
[Address] ***@*** (IWICBitmap_Lock_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E981)
[Address] ***@*** (IWICBitmap_SetPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC74)
[Address] ***@*** (IWICBitmap_SetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC97)
[Address] ***@*** (IWICColorContext_InitializeFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EB75)
[Address] ***@*** (IWICComponentFactory_CreateMetadataWriterFromReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D7AA)
[Address] ***@*** (IWICComponentFactory_CreateQueryWriterFromBlockWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D7D3)
[Address] ***@*** (IWICComponentInfo_GetAuthor_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E958)
[Address] ***@*** (IWICComponentInfo_GetCLSID_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICComponentInfo_GetFriendlyName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E9AA)
[Address] ***@*** (IWICComponentInfo_GetSpecVersion_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D88E)
[Address] ***@*** (IWICComponentInfo_GetVersion_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E981)
[Address] ***@*** (IWICFastMetadataEncoder_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D8FD)
[Address] ***@*** (IWICFastMetadataEncoder_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICFormatConverter_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DCC7)
[Address] ***@*** (IWICImagingFactory_CreateBitmapClipper_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D557)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFlipRotator_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D580)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFromHBITMAP_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D6BA)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFromHICON_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D6E6)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D656)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFromSource_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D62D)
[Address] ***@*** (IWICImagingFactory_CreateBitmapScaler_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D52E)
[Address] ***@*** (IWICImagingFactory_CreateBitmap_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D68B)
[Address] ***@*** (IWICImagingFactory_CreateComponentInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D4D9)
[Address] ***@*** (IWICImagingFactory_CreateDecoderFromFileHandle_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D4A1)
[Address] ***@*** (IWICImagingFactory_CreateDecoderFromFilename_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D466)
[Address] ***@*** (IWICImagingFactory_CreateDecoderFromStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D42E)
[Address] ***@*** (IWICImagingFactory_CreateEncoder_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D5D2)
[Address] ***@*** (IWICImagingFactory_CreateFastMetadataEncoderFromDecoder_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D70C)
[Address] ***@*** (IWICImagingFactory_CreateFastMetadataEncoderFromFrameDecode_ProxñÿA|oeø"ý) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D732)
[Address] ***@*** (IWICImagingFactory_CreateFormatConverter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D505)
[Address] ***@*** (IWICImagingFactory_CreatePalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DADD)
[Address] ***@*** (IWICImagingFactory_CreateQueryWriterFromReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D781)
[Address] ***@*** (IWICImagingFactory_CreateQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D758)
[Address] ***@*** (IWICImagingFactory_CreateStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D5A9)
[Address] ***@*** (IWICMetadataBlockReader_GetCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICMetadataBlockReader_GetReaderByIndex_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D7FC)
[Address] ***@*** (IWICMetadataQueryReader_GetContainerFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DFB7)
[Address] ***@*** (IWICMetadataQueryReader_GetEnumerator_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D822)
[Address] ***@*** (IWICMetadataQueryReader_GetLocation_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E049)
[Address] ***@*** (IWICMetadataQueryReader_GetMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D7FC)
[Address] ***@*** (IWICMetadataQueryWriter_RemoveMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D8DA)
[Address] ***@*** (IWICMetadataQueryWriter_SetMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DFDA)
[Address] ***@*** (IWICPalette_GetColorCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D96C)
[Address] ***@*** (IWICPalette_GetColors_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D88E)
[Address] ***@*** (IWICPalette_GetType_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D845)
[Address] ***@*** (IWICPalette_HasAlpha_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D9A2)
[Address] ***@*** (IWICPalette_InitializeCustom_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EB75)
[Address] ***@*** (IWICPalette_InitializeFromBitmap_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D943)
[Address] ***@*** (IWICPalette_InitializeFromPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D822)
[Address] ***@*** (IWICPalette_InitializePredefined_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D91D)
[Address] ***@*** (IWICPixelFormatInfo_GetBitsPerPixel_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EB03)
[Address] ***@*** (IWICPixelFormatInfo_GetChannelCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DD50)
[Address] ***@*** (IWICPixelFormatInfo_GetChannelMask_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EB26)
[Address] ***@*** (IWICStream_InitializeFromIStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DD50)
[Address] ***@*** (IWICStream_InitializeFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DD73)
[Address] ***@*** (WICConvertBitmapSource) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DDB8)
[Address] ***@*** (WICCreateBitmapFromSection) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DF8D)
[Address] ***@*** (WICCreateBitmapFromSectionEx) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DE8C)
[Address] ***@*** (WICCreateColorContext_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1EB52)
[Address] ***@*** (WICCreateImagingFactory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D02B)
[Address] ***@*** (WICGetMetadataContentSize) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E61D)
[Address] ***@*** (WICMapGuidToShortName) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D0EC)
[Address] ***@*** (WICMapSchemaToName) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D2E0)
[Address] ***@*** (WICMapShortNameToGuid) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1D217)
[Address] ***@*** (WICMatchMetadataContent) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E072)
[Address] ***@*** (WICSerializeMetadataContent) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1E1B4)
[Address] ***@*** (WICSetEncoderFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\WindowsCodecs.dll @ 0x73F1DD99)
[Address] ***@*** (BeginBufferedAnimation) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743909AE)
[Address] ***@*** (BeginBufferedPaint) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743849A1)
[Address] ***@*** (BeginPanningFeedback) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B0731)
[Address] ***@*** (BufferedPaintClear) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74386395)
[Address] ***@*** (BufferedPaintInit) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438940E)
[Address] ***@*** (BufferedPaintRenderAnimation) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743908ED)
[Address] ***@*** (BufferedPaintSetAlpha) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439E6B3)
[Address] ***@*** (BufferedPaintStopAllAnimations) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439D395)
[Address] ***@*** (BufferedPaintUnInit) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743894AB)
[Address] ***@*** (CloseThemeData) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74386A18)
[Address] ***@*** (DrawThemeBackground) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74383982)
[Address] ***@*** (DrawThemeBackgroundEx) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439D9DA)
[Address] ***@*** (DrawThemeEdge) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743A3B52)
[Address] ***@*** (DrawThemeIcon) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B35E7)
[Address] ***@*** (DrawThemeParentBackground) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743853E5)
[Address] ***@*** (DrawThemeParentBackgroundEx) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743851BF)
[Address] ***@*** (DrawThemeText) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74384EA1)
[Address] ***@*** (DrawThemeTextEx) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743863E6)
[Address] ***@*** (EnableThemeDialogTexture) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438FCAF)
[Address] ***@*** (EnableTheming) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2FEB)
[Address] ***@*** (EndBufferedAnimation) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74383F9A)
[Address] ***@*** (EndBufferedPaint) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74383F9A)
[Address] ***@*** (EndPanningFeedback) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B06CC)
[Address] ***@*** (GetBufferedPaintBits) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74384BAF)
[Address] ***@*** (GetBufferedPaintDC) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743904BC)
[Address] ***@*** (GetBufferedPaintTargetDC) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74390473)
[Address] ***@*** (GetBufferedPaintTargetRect) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2E7F)
[Address] ***@*** (GetCurrentThemeName) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743905DD)
[Address] ***@*** (GetThemeAppProperties) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74390FB1)
[Address] ***@*** (GetThemeBackgroundContentRect) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438CD2E)
[Address] ***@*** (GetThemeBackgroundExtent) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438F8BF)
[Address] ***@*** (GetThemeBackgroundRegion) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439165D)
[Address] ***@*** (GetThemeBitmap) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438BF93)
[Address] ***@*** (GetThemeBool) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74387C1F)
[Address] ***@*** (GetThemeColor) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeDocumentationProperty) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2932)
[Address] ***@*** (GetThemeEnumValue) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeFilename) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2412)
[Address] ***@*** (GetThemeFont) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438FF21)
[Address] ***@*** (GetThemeInt) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeIntList) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B23B1)
[Address] ***@*** (GetThemeMargins) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743886E9)
[Address] ***@*** (GetThemeMetric) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743906E2)
[Address] ***@*** (GetThemePartSize) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438CDB1)
[Address] ***@*** (GetThemePosition) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2350)
[Address] ***@*** (GetThemePropertyOrigin) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743A3FBB)
[Address] ***@*** (GetThemeRect) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74393611)
[Address] ***@*** (GetThemeStream) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743939D9)
[Address] ***@*** (GetThemeString) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B22E4)
[Address] ***@*** (GetThemeSysBool) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B3172)
[Address] ***@*** (GetThemeSysColor) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743A3274)
[Address] ***@*** (GetThemeSysColorBrush) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B301E)
[Address] ***@*** (GetThemeSysFont) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B29C4)
[Address] ***@*** (GetThemeSysInt) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2BD3)
[Address] ***@*** (GetThemeSysSize) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B320B)
[Address] ***@*** (GetThemeSysString) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B2B3F)
[Address] ***@*** (GetThemeTextExtent) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74382D57)
[Address] ***@*** (GetThemeTextMetrics) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438F992)
[Address] ***@*** (GetThemeTransitionDuration) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74391081)
[Address] ***@*** (GetWindowTheme) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438DF46)
[Address] ***@*** (HitTestThemeBackground) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74393CE3)
[Address] ***@*** (IsAppThemed) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438F869)
[Address] ***@*** (IsCompositionActive) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74382E9A)
[Address] ***@*** (IsThemeActive) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438F785)
[Address] ***@*** (IsThemeBackgroundPartiallyTransparent) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743860AB)
[Address] ***@*** (IsThemeDialogTextureEnabled) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B312B)
[Address] ***@*** (IsThemePartDefined) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743885B4)
[Address] ***@*** (OpenThemeData) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743873D2)
[Address] ***@*** (OpenThemeDataEx) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743A3D43)
[Address] ***@*** (SetThemeAppProperties) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B3296)
[Address] ***@*** (SetWindowTheme) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x74390134)
[Address] ***@*** (SetWindowThemeAttribute) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7439CFE6)
[Address] ***@*** (ThemeInitApiHook) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x7438B176)
[Address] ***@*** (UpdatePanningFeedback) : propsys.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x743B068D)
[Address] ***@*** (StrStrIW) : api-ms-win-downlevel-shlwapi-l1-1-0.dll -> HOOKED (C:\Windows\system32\shlwapi.DLL @ 0x75BE46E9)
[Address] ***@*** (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743909AE)
[Address] ***@*** (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743849A1)
[Address] ***@*** (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B0731)
[Address] ***@*** (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74386395)
[Address] ***@*** (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438940E)
[Address] ***@*** (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743908ED)
[Address] ***@*** (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7439E6B3)
[Address] ***@*** (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7439D395)
[Address] ***@*** (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743894AB)
[Address] ***@*** (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74386A18)
[Address] ***@*** (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74383982)
[Address] ***@*** (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7439D9DA)
[Address] ***@*** (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743A3B52)
[Address] ***@*** (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B35E7)
[Address] ***@*** (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743853E5)
[Address] ***@*** (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743851BF)
[Address] ***@*** (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74384EA1)
[Address] ***@*** (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743863E6)
[Address] ***@*** (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438FCAF)
[Address] ***@*** (EnableTheming) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B2FEB)
[Address] ***@*** (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74383F9A)
[Address] ***@*** (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74383F9A)
[Address] ***@*** (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B06CC)
[Address] ***@*** (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74384BAF)
[Address] ***@*** (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743904BC)
[Address] ***@*** (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74390473)
[Address] ***@*** (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B2E7F)
[Address] ***@*** (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743905DD)
[Address] ***@*** (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74390FB1)
[Address] ***@*** (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438CD2E)
[Address] ***@*** (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438F8BF)
[Address] ***@*** (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7439165D)
[Address] ***@*** (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438BF93)
[Address] ***@*** (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74387C1F)
[Address] ***@*** (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B2932)
[Address] ***@*** (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B2412)
[Address] ***@*** (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438FF21)
[Address] ***@*** (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438616C)
[Address] ***@*** (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B23B1)
[Address] ***@*** (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743886E9)
[Address] ***@*** (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743906E2)
[Address] ***@*** (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438CDB1)
[Address] ***@*** (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B2350)
[Address] ***@*** (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743A3FBB)
[Address] ***@*** (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74393611)
[Address] ***@*** (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743939D9)
[Address] ***@*** (GetThemeString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B22E4)
[Address] ***@*** (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B3172)
[Address] ***@*** (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743A3274)
[Address] ***@*** (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B301E)
[Address] ***@*** (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B29C4)
[Address] ***@*** (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B2BD3)
[Address] ***@*** (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B320B)
[Address] ***@*** (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B2B3F)
[Address] ***@*** (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74382D57)
[Address] ***@*** (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438F992)
[Address] ***@*** (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74391081)
[Address] ***@*** (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438DF46)
[Address] ***@*** (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74393CE3)
[Address] ***@*** (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438F869)
[Address] ***@*** (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74382E9A)
[Address] ***@*** (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438F785)
[Address] ***@*** (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743860AB)
[Address] ***@*** (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B312B)
[Address] ***@*** (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743885B4)
[Address] ***@*** (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743873D2)
[Address] ***@*** (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743A3D43)
[Address] ***@*** (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B3296)
[Address] ***@*** (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74390134)
[Address] ***@*** (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7439CFE6)
[Address] ***@*** (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438B176)
[Address] ***@*** (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B068D)
[Address] ***@*** (DllGetClassObject) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1CF9D)
[Address] ***@*** (IEnumString_Next_WIC_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E000)
[Address] ***@*** (IEnumString_Reset_WIC_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E029)
[Address] ***@*** (IPropertyBag2_Write_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E049)
[Address] ***@*** (IWICBitmapClipper_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DD2A)
[Address] ***@*** (IWICBitmapCodecInfo_DoesSupportAnimation_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EA9A)
[Address] ***@*** (IWICBitmapCodecInfo_DoesSupportLossless_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EABD)
[Address] ***@*** (IWICBitmapCodecInfo_DoesSupportMultiframe_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EAE0)
[Address] ***@*** (IWICBitmapCodecInfo_GetContainerFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E9D3)
[Address] ***@*** (IWICBitmapCodecInfo_GetDeviceManufacturer_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E9F6)
[Address] ***@*** (IWICBitmapCodecInfo_GetDeviceModels_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EA1F)
[Address] ***@*** (IWICBitmapCodecInfo_GetFileExtensions_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EA71)
[Address] ***@*** (IWICBitmapCodecInfo_GetMimeTypes_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EA48)
[Address] ***@*** (IWICBitmapDecoder_CopyPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D845)
[Address] ***@*** (IWICBitmapDecoder_GetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E9AA)
[Address] ***@*** (IWICBitmapDecoder_GetDecoderInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D822)
[Address] ***@*** (IWICBitmapDecoder_GetFrameCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D9A2)
[Address] ***@*** (IWICBitmapDecoder_GetFrame_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D868)
[Address] ***@*** (IWICBitmapDecoder_GetMetadataQueryReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D8DA)
[Address] ***@*** (IWICBitmapDecoder_GetPreview_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC74)
[Address] ***@*** (IWICBitmapDecoder_GetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E9D3)
[Address] ***@*** (IWICBitmapEncoder_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC05)
[Address] ***@*** (IWICBitmapEncoder_CreateNewFrame_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DB87)
[Address] ***@*** (IWICBitmapEncoder_GetEncoderInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DB5E)
[Address] ***@*** (IWICBitmapEncoder_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D9A2)
[Address] ***@*** (IWICBitmapEncoder_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DB32)
[Address] ***@*** (IWICBitmapEncoder_SetPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DBDC)
[Address] ***@*** (IWICBitmapEncoder_SetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DBB3)
[Address] ***@*** (IWICBitmapFlipRotator_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DD2A)
[Address] ***@*** (IWICBitmapFrameDecode_GetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D88E)
[Address] ***@*** (IWICBitmapFrameDecode_GetMetadataQueryReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D8DA)
[Address] ***@*** (IWICBitmapFrameDecode_GetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D8B7)
[Address] ***@*** (IWICBitmapFrameEncode_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D9C5)
[Address] ***@*** (IWICBitmapFrameEncode_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EB03)
[Address] ***@*** (IWICBitmapFrameEncode_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DFB7)
[Address] ***@*** (IWICBitmapFrameEncode_SetColorContexts_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DB06)
[Address] ***@*** (IWICBitmapFrameEncode_SetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DA17)
[Address] ***@*** (IWICBitmapFrameEncode_SetSize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D9E5)
[Address] ***@*** (IWICBitmapFrameEncode_SetThumbnail_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DADD)
[Address] ***@*** (IWICBitmapFrameEncode_WriteSource_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DA71)
[Address] ***@*** (IWICBitmapLock_GetDataPointer_STA_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D7FC)
[Address] ***@*** (IWICBitmapLock_GetStride_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICBitmapScaler_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DCFE)
[Address] ***@*** (IWICBitmapSource_CopyPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D822)
[Address] ***@*** (IWICBitmapSource_CopyPixels_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC48)
[Address] ***@*** (IWICBitmapSource_GetPixelFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICBitmapSource_GetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D7FC)
[Address] ***@*** (IWICBitmapSource_GetSize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D91D)
[Address] ***@*** (IWICBitmap_Lock_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E981)
[Address] ***@*** (IWICBitmap_SetPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC74)
[Address] ***@*** (IWICBitmap_SetResolution_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC97)
[Address] ***@*** (IWICColorContext_InitializeFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EB75)
[Address] ***@*** (IWICComponentFactory_CreateMetadataWriterFromReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D7AA)
[Address] ***@*** (IWICComponentFactory_CreateQueryWriterFromBlockWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D7D3)
[Address] ***@*** (IWICComponentInfo_GetAuthor_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E958)
[Address] ***@*** (IWICComponentInfo_GetCLSID_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICComponentInfo_GetFriendlyName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E9AA)
[Address] ***@*** (IWICComponentInfo_GetSpecVersion_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D88E)
[Address] ***@*** (IWICComponentInfo_GetVersion_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E981)
[Address] ***@*** (IWICFastMetadataEncoder_Commit_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D8FD)
[Address] ***@*** (IWICFastMetadataEncoder_GetMetadataQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICFormatConverter_Initialize_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DCC7)
[Address] ***@*** (IWICImagingFactory_CreateBitmapClipper_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D557)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFlipRotator_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D580)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFromHBITMAP_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D6BA)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFromHICON_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D6E6)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D656)
[Address] ***@*** (IWICImagingFactory_CreateBitmapFromSource_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D62D)
[Address] ***@*** (IWICImagingFactory_CreateBitmapScaler_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D52E)
[Address] ***@*** (IWICImagingFactory_CreateBitmap_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D68B)
[Address] ***@*** (IWICImagingFactory_CreateComponentInfo_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D4D9)
[Address] ***@*** (IWICImagingFactory_CreateDecoderFromFileHandle_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D4A1)
[Address] ***@*** (IWICImagingFactory_CreateDecoderFromFilename_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D466)
[Address] ***@*** (IWICImagingFactory_CreateDecoderFromStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D42E)
[Address] ***@*** (IWICImagingFactory_CreateEncoder_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D5D2)
[Address] ***@*** (IWICImagingFactory_CreateFastMetadataEncoderFromDecoder_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D70C)
[Address] ***@*** (IWICImagingFactory_CreateFastMetadataEncoderFromFrameDecode_ProxñÿA|oeø"ý) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D732)
[Address] ***@*** (IWICImagingFactory_CreateFormatConverter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D505)
[Address] ***@*** (IWICImagingFactory_CreatePalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DADD)
[Address] ***@*** (IWICImagingFactory_CreateQueryWriterFromReader_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D781)
[Address] ***@*** (IWICImagingFactory_CreateQueryWriter_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D758)
[Address] ***@*** (IWICImagingFactory_CreateStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D5A9)
[Address] ***@*** (IWICMetadataBlockReader_GetCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DC25)
[Address] ***@*** (IWICMetadataBlockReader_GetReaderByIndex_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D7FC)
[Address] ***@*** (IWICMetadataQueryReader_GetContainerFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DFB7)
[Address] ***@*** (IWICMetadataQueryReader_GetEnumerator_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D822)
[Address] ***@*** (IWICMetadataQueryReader_GetLocation_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E049)
[Address] ***@*** (IWICMetadataQueryReader_GetMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D7FC)
[Address] ***@*** (IWICMetadataQueryWriter_RemoveMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D8DA)
[Address] ***@*** (IWICMetadataQueryWriter_SetMetadataByName_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DFDA)
[Address] ***@*** (IWICPalette_GetColorCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D96C)
[Address] ***@*** (IWICPalette_GetColors_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D88E)
[Address] ***@*** (IWICPalette_GetType_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D845)
[Address] ***@*** (IWICPalette_HasAlpha_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D9A2)
[Address] ***@*** (IWICPalette_InitializeCustom_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EB75)
[Address] ***@*** (IWICPalette_InitializeFromBitmap_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D943)
[Address] ***@*** (IWICPalette_InitializeFromPalette_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D822)
[Address] ***@*** (IWICPalette_InitializePredefined_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D91D)
[Address] ***@*** (IWICPixelFormatInfo_GetBitsPerPixel_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EB03)
[Address] ***@*** (IWICPixelFormatInfo_GetChannelCount_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DD50)
[Address] ***@*** (IWICPixelFormatInfo_GetChannelMask_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EB26)
[Address] ***@*** (IWICStream_InitializeFromIStream_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DD50)
[Address] ***@*** (IWICStream_InitializeFromMemory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DD73)
[Address] ***@*** (WICConvertBitmapSource) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DDB8)
[Address] ***@*** (WICCreateBitmapFromSection) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DF8D)
[Address] ***@*** (WICCreateBitmapFromSectionEx) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DE8C)
[Address] ***@*** (WICCreateColorContext_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1EB52)
[Address] ***@*** (WICCreateImagingFactory_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D02B)
[Address] ***@*** (WICGetMetadataContentSize) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E61D)
[Address] ***@*** (WICMapGuidToShortName) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D0EC)
[Address] ***@*** (WICMapSchemaToName) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D2E0)
[Address] ***@*** (WICMapShortNameToGuid) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1D217)
[Address] ***@*** (WICMatchMetadataContent) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E072)
[Address] ***@*** (WICSerializeMetadataContent) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1E1B4)
[Address] ***@*** (WICSetEncoderFormat_Proxy) : XmlLite.dll -> HOOKED (C:\Windows\system32\windowscodecs.dll @ 0x73F1DD99)
[Address] ***@*** (StrStrIW) : api-ms-win-downlevel-shlwapi-l1-1-0.dll -> HOOKED (C:\Windows\system32\shlwapi.DLL @ 0x75BE46E9)
[Address] ***@*** (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743909AE)
[Address] ***@*** (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743849A1)
[Address] ***@*** (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B0731)
[Address] ***@*** (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74386395)
[Address] ***@*** (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438940E)
[Address] ***@*** (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743908ED)
[Address] ***@*** (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7439E6B3)
[Address] ***@*** (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7439D395)
[Address] ***@*** (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743894AB)
[Address] ***@*** (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74386A18)
[Address] ***@*** (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74383982)
[Address] ***@*** (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7439D9DA)
[Address] ***@*** (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743A3B52)
[Address] ***@*** (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B35E7)
[Address] ***@*** (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743853E5)
[Address] ***@*** (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743851BF)
[Address] ***@*** (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74384EA1)
[Address] ***@*** (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743863E6)
[Address] ***@*** (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x7438FCAF)
[Address] ***@*** (EnableTheming) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B2FEB)
[Address] ***@*** (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74383F9A)
[Address] ***@*** (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74383F9A)
[Address] ***@*** (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743B06CC)
[Address] ***@*** (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74384BAF)
[Address] ***@*** (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x743904BC)
[Address] ***@*** (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x74390473)
[Address] ***@*** (GetBufferedPaintTarg
0
Réponse 3 / 14
Rickys79
20 avril 2014 à 17:01
Rapport Malwarebytes :

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 20/04/2014
Heure de l'examen: 16:59:11
Fichier journal: Rapport Malwarebytes-.txt
Administrateur: Oui

Version: 2.00.1.1004
Base de données Malveillants: v2014.03.04.09
Base de données Rootkits: v2014.02.20.01
Licence: Essai
Protection contre les malveillants: Activé(e)
Protection contre les sites Web malveillants: Activé(e)
Chameleon: Activé(e)

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x86
Système de fichiers: NTFS
Utilisateur: Eric

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 217015
Temps écoulé: 10 min, 51 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Activé(e)
Examen approfondi Rootkits: Activé(e)
Shuriken: Activé(e)
PUP: Avertir
PUM: Activé(e)

Processus: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Clés du Registre: 0
(No malicious items detected)

Valeurs du Registre: 0
(No malicious items detected)

Données du Registre: 0
(No malicious items detected)

Dossiers: 0
(No malicious items detected)

Fichiers: 0
(No malicious items detected)

Secteurs physiques: 2
Forged physical sector, Secteur physique #1sur Lecteur #0, , [0fa547e92e6e9b80376be365f774da46],
Forged physical sector, Secteur physique #211sur Lecteur #0, , [0fa547e92e6e9b80376be365f774da46],
0
Réponse 4 / 14
Rickys79
21 avril 2014 à 14:37
Bon, après plusieurs nettoyages toujours pas d'amélioration, IE continue de bouffer de la mémoire...Je ne sais pas quoi faire.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 14
Rickys79 Messages postés 22 Date d'inscription mardi 22 janvier 2013 Statut Membre Dernière intervention 3 janvier 2017
21 avril 2014 à 16:32
Que faut-il faire ?
0
Réponse 6 / 14
Rickys79 Messages postés 22 Date d'inscription mardi 22 janvier 2013 Statut Membre Dernière intervention 3 janvier 2017
21 avril 2014 à 21:41
voici des rapports

[URL]https://jheberg.net/captcha/adwcleaners0/[/URL]
[URL]https://jheberg.net/captcha/hijackthis-2/[/URL]
[URL]https://jheberg.net/captcha/rkreport0-dn-04212014-151655/[/URL]
0
Réponse 7 / 14
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 629
Modifié par Malekal_morte- le 24/04/2014 à 18:21
Solution : https://forum.malekal.com/viewtopic.php?t=28637&start=

Like the angel you are, you laugh creating a lightness in my chest,
Your eyes they penetrate me,
(Your answer's always 'maybe')
That's when I got up and left
0
Réponse 8 / 14
Rickys79 Messages postés 22 Date d'inscription mardi 22 janvier 2013 Statut Membre Dernière intervention 3 janvier 2017
24 avril 2014 à 18:15
Voici le rapport de Kaspersky TDSS Killer :

https://pjjoint.malekal.com/files.php?id=20140424_q15b7c5j11u5
0
Réponse 9 / 14
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 629
24 avril 2014 à 18:17
Fais Cure là dessus :

18:08:27.0896 5696 [ 6A807463EAD0A857B687B38564ABB514 ] \Device\Harddisk0\DR0\Partition1
18:08:27.0896 5696 \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - infected
18:08:27.0896 5696 \Device\Harddisk0\DR0\Partition1 - detected Rootkit.Boot.Cidox.b (0)
0
Réponse 10 / 14
Rickys79 Messages postés 22 Date d'inscription mardi 22 janvier 2013 Statut Membre Dernière intervention 3 janvier 2017
24 avril 2014 à 18:19
C'est fait, je dois redémarrer le pc pour valider.
0
Réponse 11 / 14
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 629
24 avril 2014 à 18:20
let's go :)
0
Réponse 12 / 14
Rickys79 Messages postés 22 Date d'inscription mardi 22 janvier 2013 Statut Membre Dernière intervention 3 janvier 2017
24 avril 2014 à 18:26
Bon j'ai refait un scan et plus rien n'est détecté. Dans le gestionnaire des taches IE ne semble plus s'ouvrir !
ça a bien marché alors un grand grand grand merci pour votre aide, ça faisait plusieurs jours que ce truc me saoulait !!!
0
Réponse 13 / 14
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 629
24 avril 2014 à 18:28
ok super :)

Par contre, faut que tu changes tous tes mots de passe, ils ont été certainement volés.

Garde Malwarebytes pour faire des scan réguliers, il est efficace.

~~

Important - ton infection est venue par un exploit sur site web :

Un exploit sur site WEB permet l'infection de ton ordinateur de manière automatiquement à la visite d'un site WEB qui a été hacké, il tire partie du fait que tu as des logiciels (Java, Adobe Reader etc) qui sont pas à jour et possèdent des vulnérabilités qui permettent l'execution de code (malicieux dans notre cas) à ton insu.
Le fait de ne pas avoir des logiciels à jour et qui ont potentiellement des vulnérabilités permettent donc d'infecter ton système.
Exemple avec : Exploit Java

Il faut donc impérativement maintenir tes logiciels à jour afin de ne pas voir ces portes d'entrée sur ton système.
Tant que ces logiciels ne seront pas à jour, ton PC est vulnérable et les infections peuvent s'installer facilement.

IMPORTANT : mettre à jour tes programmes notamment Java/Adobe Reader et Flash :
/faq/13362-mettre-a-jour-son-pc-contre-les-failles-de-securite
https://forum.malekal.com/viewtopic.php?t=15960&start=

Désactive Java de tes navigateurs WEB : https://www.commentcamarche.net/faq/35621-desactiver-java-sur-ses-navigateurs-web


Passe le mot à tes amis !

~~

Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html

0
Réponse 14 / 14
Rickys79 Messages postés 22 Date d'inscription mardi 22 janvier 2013 Statut Membre Dernière intervention 3 janvier 2017
24 avril 2014 à 18:34
D'accord je vais m'atteler à la tache, merci bien !
0

Discussions similaires

Fonction MS-DOS non valide
Phoenix78 -
avo9900 -

6 réponses
Comment ouvrir une console DOS sous Windows
Guillaume -
tim -

7 réponses
etiquette pour dos classeur
cc -
t2stardust -

2 réponses
Commande MS-DOS pour inserer une pause
klash -
Noddy -

12 réponses
"This program cannot run in dos mode"
saly01 -
moze -

4 réponses