SHARE
TWEET

cham ace beta testv2

a guest Nov 17th, 2016 139 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. [ACEv10]: +------------------------------------------------------------------------------+
  2. [ACEv10]: |                                  Player Kick                                 | //This is a cheat.
  3. [ACEv10]: +------------------------------------------------------------------------------+
  4. [ACEv10]: PlayerName.....: Mandito
  5. [ACEv10]: PlayerIP.......: 181.138.165.228
  6. [ACEv10]: OS.............: Microsoft Windows 7/2008 R2 x86 (Version: 6.1.7601)
  7. [ACEv10]: CPU............: AMD Phenom(tm) II X3 710 Processor
  8. [ACEv10]: CPUSpeed.......: 2612.150879 Mhz
  9. [ACEv10]: NICDesc........: NVIDIA nForce Networking Controller
  10. [ACEv10]: MACHash1.......: EA03884CF8913F06C9C1B9106BFA86B5
  11. [ACEv10]: MACHash2.......: ECD743551CF9FE75175B1C5E3ADC9068
  12. [ACEv10]: HWID...........: 9B6645BF4BB98F9840475D6C70C2E9F6
  13. [ACEv10]: GameVersion....: 436
  14. [ACEv10]: Renderer.......: D3DDrv.D3DRenderDevice
  15. [ACEv10]: SoundDevice....: Galaxy.GalaxyAudioSubsystem
  16. [ACEv10]: CommandLine....:
  17. [ACEv10]: TimeStamp......: 25-09-2016 / 03:01:50
  18. [ACEv10]: +------------------------------------------------------------------------------+
  19. [ACEv10]: |                                 Kick Reasons                                 |
  20. [ACEv10]: +------------------------------------------------------------------------------+
  21. [ACEv10]: KickReason.....: Engine Object Replaced
  22. [ACEv10]: ObjectName.....: GameEngine Transient.GameEngine0
  23. [ACEv10]: ObjectPtr......: 0x007FF420
  24. [ACEv10]: ModuleHandle...: 0x00000000
  25. [ACEv10]: ModuleName.....: Unknown Module
  26. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  27. [ACEv10]: +------------------------------------------------------------------------------+
  28. [ACEv10]: KickReason.....: Engine Object Replaced
  29. [ACEv10]: ObjectName.....: Font Engine.SmallFont
  30. [ACEv10]: ObjectPtr......: 0x00791E00
  31. [ACEv10]: ModuleHandle...: 0x00000000
  32. [ACEv10]: ModuleName.....: Unknown Module
  33. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  34. [ACEv10]: +------------------------------------------------------------------------------+
  35. [ACEv10]: KickReason.....: Engine Object Replaced
  36. [ACEv10]: ObjectName.....: Texture UWindow.Icons.MouseCursor
  37. [ACEv10]: ObjectPtr......: 0x0434EA00
  38. [ACEv10]: ModuleHandle...: 0x00000000
  39. [ACEv10]: ModuleName.....: Unknown Module
  40. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  41. [ACEv10]: +------------------------------------------------------------------------------+
  42. [ACEv10]: KickReason.....: Engine Object Replaced
  43. [ACEv10]: ObjectName.....: Texture UWindow.WhiteTexture
  44. [ACEv10]: ObjectPtr......: 0x045DFF00
  45. [ACEv10]: ModuleHandle...: 0x00000000
  46. [ACEv10]: ModuleName.....: Unknown Module
  47. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  48. [ACEv10]: +------------------------------------------------------------------------------+
  49. [ACEv10]: KickReason.....: Engine Object Replaced
  50. [ACEv10]: ObjectName.....: Texture UWindow.Icons.ChkChecked
  51. [ACEv10]: ObjectPtr......: 0x05DA3540
  52. [ACEv10]: ModuleHandle...: 0x00000000
  53. [ACEv10]: ModuleName.....: Unknown Module
  54. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  55. [ACEv10]: +------------------------------------------------------------------------------+
  56. [ACEv10]: KickReason.....: Engine Object Replaced
  57. [ACEv10]: ObjectName.....: Texture UWindow.Icons.ChkUnchecked
  58. [ACEv10]: ObjectPtr......: 0x05DA3480
  59. [ACEv10]: ModuleHandle...: 0x00000000
  60. [ACEv10]: ModuleName.....: Unknown Module
  61. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  62. [ACEv10]: +------------------------------------------------------------------------------+
  63. [ACEv10]: KickReason.....: Engine Object Replaced
  64. [ACEv10]: ObjectName.....: Texture UWindow.Icons.ChkCheckedDisabled
  65. [ACEv10]: ObjectPtr......: 0x05DA3600
  66. [ACEv10]: ModuleHandle...: 0x00000000
  67. [ACEv10]: ModuleName.....: Unknown Module
  68. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  69. [ACEv10]: +------------------------------------------------------------------------------+
  70. [ACEv10]: KickReason.....: Engine Object Replaced
  71. [ACEv10]: ObjectName.....: Class Botpack.CTFFlag
  72. [ACEv10]: ObjectPtr......: 0x05CBB400
  73. [ACEv10]: ModuleHandle...: 0x00000000
  74. [ACEv10]: ModuleName.....: Unknown Module
  75. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  76. [ACEv10]: +------------------------------------------------------------------------------+
  77. [ACEv10]: KickReason.....: Engine Object Replaced
  78. [ACEv10]: ObjectName.....: Class Botpack.WarShell
  79. [ACEv10]: ObjectPtr......: 0x07250000
  80. [ACEv10]: ModuleHandle...: 0x00000000
  81. [ACEv10]: ModuleName.....: Unknown Module
  82. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  83. [ACEv10]: +------------------------------------------------------------------------------+
  84. [ACEv10]: KickReason.....: Engine Object Replaced
  85. [ACEv10]: ObjectName.....: Texture Botpack.Icons.BlueFlag
  86. [ACEv10]: ObjectPtr......: 0x05DA0D80
  87. [ACEv10]: ModuleHandle...: 0x00000000
  88. [ACEv10]: ModuleName.....: Unknown Module
  89. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  90. [ACEv10]: +------------------------------------------------------------------------------+
  91. [ACEv10]: KickReason.....: Engine Object Replaced
  92. [ACEv10]: ObjectName.....: Texture Botpack.Icons.RedFlag
  93. [ACEv10]: ObjectPtr......: 0x05DA0CC0
  94. [ACEv10]: ModuleHandle...: 0x00000000
  95. [ACEv10]: ModuleName.....: Unknown Module
  96. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  97. [ACEv10]: +------------------------------------------------------------------------------+
  98. [ACEv10]: KickReason.....: Engine Object Replaced
  99. [ACEv10]: ObjectName.....: Font LadderFonts.UTLadder30
  100. [ACEv10]: ObjectPtr......: 0x02E47BC0
  101. [ACEv10]: ModuleHandle...: 0x00000000
  102. [ACEv10]: ModuleName.....: Unknown Module
  103. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  104. [ACEv10]: +------------------------------------------------------------------------------+
  105. [ACEv10]: KickReason.....: Engine Object Replaced
  106. [ACEv10]: ObjectName.....: TMale2 DM-Deck16][.TMale21
  107. [ACEv10]: ObjectPtr......: 0x06207800
  108. [ACEv10]: ModuleHandle...: 0x00000000
  109. [ACEv10]: ModuleName.....: Unknown Module
  110. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  111. [ACEv10]: +------------------------------------------------------------------------------+
  112. [ACEv10]: KickReason.....: Engine Object Replaced
  113. [ACEv10]: ObjectName.....: Texture Botpack.Icons.CHair5
  114. [ACEv10]: ObjectPtr......: 0x047B1C80
  115. [ACEv10]: ModuleHandle...: 0x00000000
  116. [ACEv10]: ModuleName.....: Unknown Module
  117. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  118. [ACEv10]: +------------------------------------------------------------------------------+
  119. [ACEv10]: KickReason.....: Engine Object Replaced
  120. [ACEv10]: ObjectName.....: Texture Botpack.Icons.CHair6
  121. [ACEv10]: ObjectPtr......: 0x047B3C00
  122. [ACEv10]: ModuleHandle...: 0x00000000
  123. [ACEv10]: ModuleName.....: Unknown Module
  124. [ACEv10]: SymbolName.....: Unknown Function+0x0000
  125. [ACEv10]: +------------------------------------------------------------------------------+
  126. [ACEv10]: |                               Screenshot Status                              |
  127. [ACEv10]: +------------------------------------------------------------------------------+
  128. [ACEv10]: Filename.......: ../Shots/[ACE] - Chamberly_s Linux Server!_2016.09.30.23.47.40_DM-Deck16][_14_Mandito.jpg
  129. [ACEv10]: Status.........: Success
  130. [ACEv10]: +------------------------------------------------------------------------------+
  131.  
  132. [ACEv10]: +------------------------------------------------------------------------------+
  133. [ACEv10]: |                                  Player Kick                                 |
  134. [ACEv10]: +------------------------------------------------------------------------------+
  135. [ACEv10]: PlayerName.....:
  136. [ACEv10]: PlayerIP.......:
  137. [ACEv10]: OS.............: Microsoft Windows 7/2008 R2 x86 (Version: 6.1.7600)
  138. [ACEv10]: CPU............:           Intel(R) Celeron(R) CPU 847 @ 1.10GHz
  139. [ACEv10]: CPUSpeed.......: 1097.531860 Mhz
  140. [ACEv10]: NICDesc........: Realtek PCIe GBE Family Controller
  141. [ACEv10]: MACHash1.......:
  142. [ACEv10]: MACHash2.......:
  143. [ACEv10]: HWID...........:
  144. [ACEv10]: GameVersion....: 436
  145. [ACEv10]: Renderer.......: D3DDrv.D3DRenderDevice
  146. [ACEv10]: SoundDevice....: Galaxy.GalaxyAudioSubsystem
  147. [ACEv10]: CommandLine....:
  148. [ACEv10]: TimeStamp......: 03-10-2016 / 19:01:50
  149. [ACEv10]: +------------------------------------------------------------------------------+
  150. [ACEv10]: |                                 Kick Reasons                                 | //Noticed no SS available. O.o
  151. [ACEv10]: +------------------------------------------------------------------------------+
  152. [ACEv10]: BaseAddress....: 0x776E0000
  153. [ACEv10]: LibraryName....: ntdll.dll
  154. [ACEv10]: LibraryPath....: C:\Windows\SYSTEM32\ntdll.dll
  155. [ACEv10]: LibrarySize....: 1286144 bytes
  156. [ACEv10]: LibraryHash....: F87212E64DE6DACDD55610B847DC2A60
  157. [ACEv10]: +------------------------------------------------------------------------------+
  158. [ACEv10]:   KickReason.....: Hooked Function
  159. [ACEv10]:   HookType.......: CODE
  160. [ACEv10]:   HookAddress....: 0x77725070
  161. [ACEv10]:   HookOffset.....: 0x0000
  162. [ACEv10]:   HookFunction...: ZwCreateEvent
  163. [ACEv10]:   HookInfo.......: ?777249f0-e95bdc2cf3/b840000000
  164. [ACEv10]:   AdditionalInfo.: Mismatch @ 777249f0
  165. [ACEv10]:     Expected:
  166. [ACEv10]:     > mov       eax, 0x40
  167. [ACEv10]:     Found:
  168. [ACEv10]:     > jmp       6a9f2650
  169. [ACEv10]:   MetaData.......: 6a9f2650 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1650
  170. [ACEv10]:     6a9f2360 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1360
  171. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  172. [ACEv10]:   +----------------------------------------------------------------------------+
  173. [ACEv10]:   +----------------------------------------------------------------------------+
  174. [ACEv10]:   KickReason.....: Hooked Function
  175. [ACEv10]:   HookType.......: CODE
  176. [ACEv10]:   HookAddress....: 0x777258F0
  177. [ACEv10]:   HookOffset.....: 0x0000
  178. [ACEv10]:   HookFunction...: ZwMapViewOfSection
  179. [ACEv10]:   HookInfo.......: ?77725070-e9ebd22cf3/b8a8000000
  180. [ACEv10]:   AdditionalInfo.: Mismatch @ 77725070
  181. [ACEv10]:     Expected:
  182. [ACEv10]:     > mov       eax, 0xa8
  183. [ACEv10]:     Found:
  184. [ACEv10]:     > jmp       6a9f2360
  185. [ACEv10]:   MetaData.......: 6a9f2520 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1520
  186. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  187. [ACEv10]:   +----------------------------------------------------------------------------+
  188. [ACEv10]:   +----------------------------------------------------------------------------+
  189. [ACEv10]:   KickReason.....: Hooked Function
  190. [ACEv10]:   HookType.......: CODE
  191. [ACEv10]:   HookAddress....: 0x77736393
  192. [ACEv10]:   HookOffset.....: 0x0000
  193. [ACEv10]:   HookFunction...: ZwResumeThread
  194. [ACEv10]:   HookInfo.......: ?777258f0-e92bcc2cf3/b830010000
  195. [ACEv10]:   AdditionalInfo.: Mismatch @ 777258f0
  196. [ACEv10]:     Expected:
  197. [ACEv10]:     > mov       eax, 0x130
  198. [ACEv10]:     Found:
  199. [ACEv10]:     > jmp       6a9f2520
  200. [ACEv10]:   MetaData.......: 6a9f2f80 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1f80
  201. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  202. [ACEv10]:   +----------------------------------------------------------------------------+
  203. [ACEv10]:   +----------------------------------------------------------------------------+
  204. [ACEv10]:   KickReason.....: Hooked Function
  205. [ACEv10]:   HookType.......: CODE
  206. [ACEv10]:   HookAddress....: 0x77795001
  207. [ACEv10]:   HookOffset.....: 0x0000
  208. [ACEv10]:   HookFunction...: RtlQueryEnvironmentVariable
  209. [ACEv10]:   HookInfo.......: ?77736393-e9e8cb2bf3/6a1068b00e7377
  210. [ACEv10]:   AdditionalInfo.: Mismatch @ 77736393
  211. [ACEv10]:     Expected:
  212. [ACEv10]:     > push      0x10
  213. [ACEv10]:     > push      0x77730eb0
  214. [ACEv10]:     Found:
  215. [ACEv10]:     > jmp       6a9f2f80
  216. [ACEv10]:   MetaData.......: 6a9f2e90 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1e90
  217. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  218. [ACEv10]:   +----------------------------------------------------------------------------+
  219. [ACEv10]:   +----------------------------------------------------------------------------+
  220. [ACEv10]:   KickReason.....: Hooked Function
  221. [ACEv10]:   HookType.......: CODE
  222. [ACEv10]:   HookAddress....: 0x77795001
  223. [ACEv10]:   HookOffset.....: 0x0000
  224. [ACEv10]:   HookFunction...: RtlDecompressBuffer
  225. [ACEv10]:   HookInfo.......: ?77795001-e98ade25f3/8bff558bec
  226. [ACEv10]:   AdditionalInfo.: Mismatch @ 77795001
  227. [ACEv10]:     Expected:
  228. [ACEv10]:     > mov       edi, edi
  229. [ACEv10]:     > push      ebp
  230. [ACEv10]:     > mov       ebp, esp
  231. [ACEv10]:     Found:
  232. [ACEv10]:     > jmp       6a9f2e90
  233. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  234. [ACEv10]:   +----------------------------------------------------------------------------+
  235. [ACEv10]:   +----------------------------------------------------------------------------+
  236. [ACEv10]:   KickReason.....: Hooked Function
  237. [ACEv10]:   HookType.......: CODE
  238. [ACEv10]:   HookAddress....: 0x77725070
  239. [ACEv10]:   HookOffset.....: 0x0000
  240. [ACEv10]:   HookFunction...: ZwCreateEvent
  241. [ACEv10]:   HookInfo.......: ?777249f0-e95bdc2cf3/b840000000
  242. [ACEv10]:   AdditionalInfo.: Mismatch @ 777249f0
  243. [ACEv10]:     Expected:
  244. [ACEv10]:     > mov       eax, 0x40
  245. [ACEv10]:     Found:
  246. [ACEv10]:     > jmp       6a9f2650
  247. [ACEv10]:   MetaData.......: 6a9f2650 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1650
  248. [ACEv10]:     6a9f2360 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1360
  249. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  250. [ACEv10]:   +----------------------------------------------------------------------------+
  251. [ACEv10]:   +----------------------------------------------------------------------------+
  252. [ACEv10]:   KickReason.....: Hooked Function
  253. [ACEv10]:   HookType.......: CODE
  254. [ACEv10]:   HookAddress....: 0x777258F0
  255. [ACEv10]:   HookOffset.....: 0x0000
  256. [ACEv10]:   HookFunction...: ZwMapViewOfSection
  257. [ACEv10]:   HookInfo.......: ?77725070-e9ebd22cf3/b8a8000000
  258. [ACEv10]:   AdditionalInfo.: Mismatch @ 77725070
  259. [ACEv10]:     Expected:
  260. [ACEv10]:     > mov       eax, 0xa8
  261. [ACEv10]:     Found:
  262. [ACEv10]:     > jmp       6a9f2360
  263. [ACEv10]:   MetaData.......: 6a9f2520 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1520
  264. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  265. [ACEv10]:   +----------------------------------------------------------------------------+
  266. [ACEv10]:   +----------------------------------------------------------------------------+
  267. [ACEv10]:   KickReason.....: Hooked Function
  268. [ACEv10]:   HookType.......: CODE
  269. [ACEv10]:   HookAddress....: 0x77736393
  270. [ACEv10]:   HookOffset.....: 0x0000
  271. [ACEv10]:   HookFunction...: ZwResumeThread
  272. [ACEv10]:   HookInfo.......: ?777258f0-e92bcc2cf3/b830010000
  273. [ACEv10]:   AdditionalInfo.: Mismatch @ 777258f0
  274. [ACEv10]:     Expected:
  275. [ACEv10]:     > mov       eax, 0x130
  276. [ACEv10]:     Found:
  277. [ACEv10]:     > jmp       6a9f2520
  278. [ACEv10]:   MetaData.......: 6a9f2f80 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1f80
  279. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  280. [ACEv10]:   +----------------------------------------------------------------------------+
  281. [ACEv10]:   +----------------------------------------------------------------------------+
  282. [ACEv10]:   KickReason.....: Hooked Function
  283. [ACEv10]:   HookType.......: CODE
  284. [ACEv10]:   HookAddress....: 0x77795001
  285. [ACEv10]:   HookOffset.....: 0x0000
  286. [ACEv10]:   HookFunction...: RtlQueryEnvironmentVariable
  287. [ACEv10]:   HookInfo.......: ?77736393-e9e8cb2bf3/6a1068b00e7377
  288. [ACEv10]:   AdditionalInfo.: Mismatch @ 77736393
  289. [ACEv10]:     Expected:
  290. [ACEv10]:     > push      0x10
  291. [ACEv10]:     > push      0x77730eb0
  292. [ACEv10]:     Found:
  293. [ACEv10]:     > jmp       6a9f2f80
  294. [ACEv10]:   MetaData.......: 6a9f2e90 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1e90
  295. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  296. [ACEv10]:   +----------------------------------------------------------------------------+
  297. [ACEv10]:   +----------------------------------------------------------------------------+
  298. [ACEv10]:   KickReason.....: Hooked Function
  299. [ACEv10]:   HookType.......: CODE
  300. [ACEv10]:   HookAddress....: 0x77795001
  301. [ACEv10]:   HookOffset.....: 0x0000
  302. [ACEv10]:   HookFunction...: RtlDecompressBuffer
  303. [ACEv10]:   HookInfo.......: ?77795001-e98ade25f3/8bff558bec
  304. [ACEv10]:   AdditionalInfo.: Mismatch @ 77795001
  305. [ACEv10]:     Expected:
  306. [ACEv10]:     > mov       edi, edi
  307. [ACEv10]:     > push      ebp
  308. [ACEv10]:     > mov       ebp, esp
  309. [ACEv10]:     Found:
  310. [ACEv10]:     > jmp       6a9f2e90
  311. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  312. [ACEv10]:   +----------------------------------------------------------------------------+
  313. [ACEv10]:   +----------------------------------------------------------------------------+
  314. [ACEv10]:   KickReason.....: Hooked Function
  315. [ACEv10]:   HookType.......: CODE
  316. [ACEv10]:   HookAddress....: 0x77725070
  317. [ACEv10]:   HookOffset.....: 0x0000
  318. [ACEv10]:   HookFunction...: ZwCreateEvent
  319. [ACEv10]:   HookInfo.......: ?777249f0-e95bdc2cf3/b840000000
  320. [ACEv10]:   AdditionalInfo.: Mismatch @ 777249f0
  321. [ACEv10]:     Expected:
  322. [ACEv10]:     > mov       eax, 0x40
  323. [ACEv10]:     Found:
  324. [ACEv10]:     > jmp       6a9f2650
  325. [ACEv10]:   MetaData.......: 6a9f2650 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1650
  326. [ACEv10]:     6a9f2360 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1360
  327. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  328. [ACEv10]:   +----------------------------------------------------------------------------+
  329. [ACEv10]:   +----------------------------------------------------------------------------+
  330. [ACEv10]:   KickReason.....: Hooked Function
  331. [ACEv10]:   HookType.......: CODE
  332. [ACEv10]:   HookAddress....: 0x777258F0
  333. [ACEv10]:   HookOffset.....: 0x0000
  334. [ACEv10]:   HookFunction...: ZwMapViewOfSection
  335. [ACEv10]:   HookInfo.......: ?77725070-e9ebd22cf3/b8a8000000
  336. [ACEv10]:   AdditionalInfo.: Mismatch @ 77725070
  337. [ACEv10]:     Expected:
  338. [ACEv10]:     > mov       eax, 0xa8
  339. [ACEv10]:     Found:
  340. [ACEv10]:     > jmp       6a9f2360
  341. [ACEv10]:   MetaData.......: 6a9f2520 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1520
  342. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  343. [ACEv10]:   +----------------------------------------------------------------------------+
  344. [ACEv10]:   +----------------------------------------------------------------------------+
  345. [ACEv10]:   KickReason.....: Hooked Function
  346. [ACEv10]:   HookType.......: CODE
  347. [ACEv10]:   HookAddress....: 0x77736393
  348. [ACEv10]:   HookOffset.....: 0x0000
  349. [ACEv10]:   HookFunction...: ZwResumeThread
  350. [ACEv10]:   HookInfo.......: ?777258f0-e92bcc2cf3/b830010000
  351. [ACEv10]:   AdditionalInfo.: Mismatch @ 777258f0
  352. [ACEv10]:     Expected:
  353. [ACEv10]:     > mov       eax, 0x130
  354. [ACEv10]:     Found:
  355. [ACEv10]:     > jmp       6a9f2520
  356. [ACEv10]:   MetaData.......: 6a9f2f80 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1f80
  357. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  358. [ACEv10]:   +----------------------------------------------------------------------------+
  359. [ACEv10]:   +----------------------------------------------------------------------------+
  360. [ACEv10]:   KickReason.....: Hooked Function
  361. [ACEv10]:   HookType.......: CODE
  362. [ACEv10]:   HookAddress....: 0x77795001
  363. [ACEv10]:   HookOffset.....: 0x0000
  364. [ACEv10]:   HookFunction...: RtlQueryEnvironmentVariable
  365. [ACEv10]:   HookInfo.......: ?77736393-e9e8cb2bf3/6a1068b00e7377
  366. [ACEv10]:   AdditionalInfo.: Mismatch @ 77736393
  367. [ACEv10]:     Expected:
  368. [ACEv10]:     > push      0x10
  369. [ACEv10]:     > push      0x77730eb0
  370. [ACEv10]:     Found:
  371. [ACEv10]:     > jmp       6a9f2f80
  372. [ACEv10]:   MetaData.......: 6a9f2e90 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1e90
  373. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  374. [ACEv10]:   +----------------------------------------------------------------------------+
  375. [ACEv10]:   +----------------------------------------------------------------------------+
  376. [ACEv10]:   KickReason.....: Hooked Function
  377. [ACEv10]:   HookType.......: CODE
  378. [ACEv10]:   HookAddress....: 0x77795001
  379. [ACEv10]:   HookOffset.....: 0x0000
  380. [ACEv10]:   HookFunction...: RtlDecompressBuffer
  381. [ACEv10]:   HookInfo.......: ?77795001-e98ade25f3/8bff558bec
  382. [ACEv10]:   AdditionalInfo.: Mismatch @ 77795001
  383. [ACEv10]:     Expected:
  384. [ACEv10]:     > mov       edi, edi
  385. [ACEv10]:     > push      ebp
  386. [ACEv10]:     > mov       ebp, esp
  387. [ACEv10]:     Found:
  388. [ACEv10]:     > jmp       6a9f2e90
  389. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  390. [ACEv10]:   +----------------------------------------------------------------------------+
  391. [ACEv10]:   +----------------------------------------------------------------------------+
  392. [ACEv10]:   KickReason.....: Hooked Function
  393. [ACEv10]:   HookType.......: CODE
  394. [ACEv10]:   HookAddress....: 0x77725070
  395. [ACEv10]:   HookOffset.....: 0x0000
  396. [ACEv10]:   HookFunction...: ZwCreateEvent
  397. [ACEv10]:   HookInfo.......: ?777249f0-e95bdc2cf3/b840000000
  398. [ACEv10]:   AdditionalInfo.: Mismatch @ 777249f0
  399. [ACEv10]:     Expected:
  400. [ACEv10]:     > mov       eax, 0x40
  401. [ACEv10]:     Found:
  402. [ACEv10]:     > jmp       6a9f2650
  403. [ACEv10]:   MetaData.......: 6a9f2650 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1650
  404. [ACEv10]:     6a9f2360 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1360
  405. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  406. [ACEv10]:   +----------------------------------------------------------------------------+
  407. [ACEv10]:   +----------------------------------------------------------------------------+
  408. [ACEv10]:   KickReason.....: Hooked Function
  409. [ACEv10]:   HookType.......: CODE
  410. [ACEv10]:   HookAddress....: 0x777258F0
  411. [ACEv10]:   HookOffset.....: 0x0000
  412. [ACEv10]:   HookFunction...: ZwMapViewOfSection
  413. [ACEv10]:   HookInfo.......: ?77725070-e9ebd22cf3/b8a8000000
  414. [ACEv10]:   AdditionalInfo.: Mismatch @ 77725070
  415. [ACEv10]:     Expected:
  416. [ACEv10]:     > mov       eax, 0xa8
  417. [ACEv10]:     Found:
  418. [ACEv10]:     > jmp       6a9f2360
  419. [ACEv10]:   MetaData.......: 6a9f2520 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1520
  420. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  421. [ACEv10]:   +----------------------------------------------------------------------------+
  422. [ACEv10]:   +----------------------------------------------------------------------------+
  423. [ACEv10]:   KickReason.....: Hooked Function
  424. [ACEv10]:   HookType.......: CODE
  425. [ACEv10]:   HookAddress....: 0x77736393
  426. [ACEv10]:   HookOffset.....: 0x0000
  427. [ACEv10]:   HookFunction...: ZwResumeThread
  428. [ACEv10]:   HookInfo.......: ?777258f0-e92bcc2cf3/b830010000
  429. [ACEv10]:   AdditionalInfo.: Mismatch @ 777258f0
  430. [ACEv10]:     Expected:
  431. [ACEv10]:     > mov       eax, 0x130
  432. [ACEv10]:     Found:
  433. [ACEv10]:     > jmp       6a9f2520
  434. [ACEv10]:   MetaData.......: 6a9f2f80 -> C:\Program Files\AVG\Av\avghookx.dll!.text+1f80
  435. [ACEv10]:   Kick Status....: Not kicking because bStrictSystemLibraryChecks is set to false
  436. [ACEv10]:   +----------------------------------------------------------------------------+
  437. [ACEv10]:   +----------------------------------------------------------------------------+
  438. [ACEv10]:   KickReason.....: Hooked Function
  439. [ACEv10]:   HookType.......: CODE
  440. [ACEv10]:   HookAddress....: 0x77795001
  441. [ACEv10]:   HookOffset.....: 0x0000
  442. [ACEv10]:   Hook
  443.  
  444. //It stopped logging here.
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top