GMER 1.0.15.15627 - http://www.gmer.net Rootkit scan 2011-05-26 20:20:03 Windows 5.1.2600 Dodatek Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdePort0 Hitachi_HTS543225L9A300 rev.FBEOC40C Running: gmer.exe; Driver: C:\DOCUME~1\Aggi\USTAWI~1\Temp\fwtdrpow.sys ---- System - GMER 1.0.15 ---- SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwAssignProcessToJobObject [0xA788C610] SSDT sptd.sys ZwCreateKey [0xB9EBE0D0] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwDebugActiveProcess [0xA788CC10] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwDuplicateObject [0xA788C730] SSDT sptd.sys ZwEnumerateKey [0xB9EC3FB2] SSDT sptd.sys ZwEnumerateValueKey [0xB9EC4340] SSDT sptd.sys ZwOpenKey [0xB9EBE0B0] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwOpenProcess [0xA788C4B0] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwOpenThread [0xA788C570] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwProtectVirtualMemory [0xA788C6D0] SSDT sptd.sys ZwQueryKey [0xB9EC4418] SSDT sptd.sys ZwQueryValueKey [0xB9EC4298] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwQueueApcThread [0xA788C790] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetContextThread [0xA788C690] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetInformationThread [0xA788C650] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetSecurityObject [0xA788C7D0] SSDT sptd.sys ZwSetValueKey [0xB9EC44AA] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSuspendProcess [0xA788C510] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSuspendThread [0xA788C590] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwTerminateProcess [0xA788C4D0] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwTerminateThread [0xA788C5D0] SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwWriteVirtualMemory [0xA788C750] ---- Kernel code sections - GMER 1.0.15 ---- .text ntkrnlpa.exe!ZwCallbackReturn + 2F29 80503B29 7 Bytes [C5, 88, A7, 90, C5, 88, A7] {LDS ECX, DWORD [EAX-0x773a6f59]; CMPSD } ? C:\WINDOWS\system32\drivers\sptd.sys Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. .text USBPORT.SYS!DllUnload B966362C 5 Bytes JMP 89B611C8 ---- User code sections - GMER 1.0.15 ---- .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[1412] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] .text D:\ESET\ekrn.exe[1944] kernel32.dll!SetUnhandledExceptionFilter 7C810386 4 Bytes [C2, 04, 00, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2156] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2412] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2784] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[2912] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3408] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3572] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3788] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtCreateFile + 6 7C90D688 4 Bytes [28, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtCreateFile + B 7C90D68D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 1 Byte [28] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtMapViewOfSection + 6 7C90DC5B 4 Bytes [28, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtMapViewOfSection + B 7C90DC60 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenFile + 6 7C90DD03 4 Bytes [68, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenFile + B 7C90DD08 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenProcess + 6 7C90DD81 4 Bytes [A8, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenProcess + B 7C90DD86 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenProcessToken + 6 7C90DD96 4 Bytes CALL 7B90F39C .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenProcessToken + B 7C90DD9B 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenProcessTokenEx + 6 7C90DDAB 4 Bytes [A8, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenProcessTokenEx + B 7C90DDB0 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenThread + 6 7C90DDFF 4 Bytes [68, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenThread + B 7C90DE04 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenThreadToken + 6 7C90DE14 4 Bytes [68, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenThreadToken + B 7C90DE19 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenThreadTokenEx + 6 7C90DE29 4 Bytes CALL 7B90F430 .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtOpenThreadTokenEx + B 7C90DE2E 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtQueryAttributesFile + 6 7C90DEE6 4 Bytes [A8, 00, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtQueryAttributesFile + B 7C90DEEB 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtQueryFullAttributesFile + 6 7C90DFB8 4 Bytes CALL 7B90F5BD .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtQueryFullAttributesFile + B 7C90DFBD 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtSetInformationFile + 6 7C90E5DF 4 Bytes [28, 01, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtSetInformationFile + B 7C90E5E4 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtSetInformationThread + 6 7C90E648 4 Bytes [28, 02, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtSetInformationThread + B 7C90E64D 1 Byte [E2] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 1 Byte [68] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtUnmapViewOfSection + 6 7C90E966 4 Bytes [68, 03, 16, 00] .text C:\Documents and Settings\Aggi\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe[3840] ntdll.dll!NtUnmapViewOfSection + B 7C90E96B 1 Byte [E2] ---- Kernel IAT/EAT - GMER 1.0.15 ---- IAT atapi.sys[HAL.dll!READ_PORT_UCHAR] [B9EBEAD4] sptd.sys IAT atapi.sys[HAL.dll!READ_PORT_BUFFER_USHORT] [B9EBEC1A] sptd.sys IAT atapi.sys[HAL.dll!READ_PORT_USHORT] [B9EBEB9C] sptd.sys IAT atapi.sys[HAL.dll!WRITE_PORT_BUFFER_USHORT] [B9EBF748] sptd.sys IAT atapi.sys[HAL.dll!WRITE_PORT_UCHAR] [B9EBF61E] sptd.sys IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [B9ED429A] sptd.sys ---- Devices - GMER 1.0.15 ---- Device \FileSystem\Ntfs \Ntfs 89D651E8 AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET) Device \Driver\NetBT \Device\NetBT_Tcpip_{137F1C79-F007-4FE0-ABB8-3BBD2F5111A7} 89B371E8 AttachedDevice \Driver\Tcpip \Device\Ip epfwtdi.sys (ESET Personal Firewall TDI filter/ESET) Device \Driver\usbehci \Device\USBPDO-0 89B491E8 Device \Driver\NetBT \Device\NetBT_Tcpip_{9C9AC5A6-5DBA-4229-9D96-A10EFEB34467} 89B371E8 Device \Driver\dmio \Device\DmControl\DmIoDaemon 89DD81E8 Device \Driver\dmio \Device\DmControl\DmConfig 89DD81E8 Device \Driver\dmio \Device\DmControl\DmPnP 89DD81E8 Device \Driver\dmio \Device\DmControl\DmInfo 89DD81E8 Device \Driver\usbuhci \Device\USBPDO-1 89B601E8 Device \Driver\usbuhci \Device\USBPDO-2 89B601E8 Device \Driver\usbuhci \Device\USBPDO-3 89B601E8 Device \Driver\usbuhci \Device\USBPDO-4 89B601E8 AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET) Device \Driver\usbehci \Device\USBPDO-5 89B491E8 Device \Driver\usbuhci \Device\USBPDO-6 89B601E8 Device \Driver\Ftdisk \Device\HarddiskVolume1 89D671E8 Device \Driver\usbuhci \Device\USBPDO-7 89B601E8 Device \Driver\Ftdisk \Device\HarddiskVolume2 89D671E8 Device \Driver\Cdrom \Device\CdRom0 89AD3790 Device \Driver\atapi \Device\Ide\IdePort0 89D661E8 Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 89D661E8 Device \Driver\atapi \Device\Ide\IdePort1 89D661E8 Device \Driver\atapi \Device\Ide\IdePort2 89D661E8 Device \Driver\atapi \Device\Ide\IdePort3 89D661E8 Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e 89D661E8 Device \Driver\Ftdisk \Device\HarddiskVolume3 89D671E8 Device \Driver\Ftdisk \Device\HarddiskVolume4 89D671E8 Device \Driver\NetBT \Device\NetBt_Wins_Export 89B371E8 Device \Driver\NetBT \Device\NetbiosSmb 89B371E8 AttachedDevice \Driver\Tcpip \Device\Udp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET) AttachedDevice \Driver\Tcpip \Device\RawIp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET) Device \Driver\usbuhci \Device\USBFDO-0 89B601E8 Device \Driver\usbuhci \Device\USBFDO-1 89B601E8 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 890FD1E8 Device \Driver\usbehci \Device\USBFDO-2 89B491E8 Device \FileSystem\MRxSmb \Device\LanmanRedirector 890FD1E8 Device \Driver\usbuhci \Device\USBFDO-3 89B601E8 Device \Driver\usbuhci \Device\USBFDO-4 89B601E8 Device \Driver\Ftdisk \Device\FtControl 89D671E8 Device \Driver\usbuhci \Device\USBFDO-5 89B601E8 Device \Driver\usbuhci \Device\USBFDO-6 89B601E8 Device \Driver\usbehci \Device\USBFDO-7 89B491E8 Device \FileSystem\Cdfs \Cdfs 890C6620 ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x14 0xAF 0xFA 0x9C ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x14 0xAF 0xFA 0x9C ... Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@cd042efbbd7f7af1647644e76e06692b 0xE2 0x63 0x26 0xF1 ... Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@bca643cdc5c2726b20d2ecedcc62c59b 0x6A 0x9C 0xD6 0x61 ... Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@2c81e34222e8052573023a60d06dd016 0xFF 0x7C 0x85 0xE0 ... Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@2582ae41fb52324423be06337561aa48 0x86 0x8C 0x21 0x01 ... Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@caaeda5fd7a9ed7697d9686d4b818472 0xF5 0x1D 0x4D 0x73 ... Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@a4a1bcf2cc2b8bc3716b74b2b4522f5d 0x50 0x93 0xE5 0xAB ... Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@4d370831d2c43cd13623e232fed27b7b 0xFB 0xA7 0x78 0xE6 ... Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@1d68fe701cdea33e477eb204b76f993d 0xAA 0x52 0xC6 0x00 ... Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@1fac81b91d8e3c5aa4b0a51804d844a3 0x51 0xFA 0x6E 0x91 ... Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@f5f62a6129303efb32fbe080bb27835b 0x3D 0xCE 0xEA 0x26 ... Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@fd4e2e1a3940b94dceb5a6a021f2e3c6 0xF8 0x31 0x0F 0xA9 ... Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32 Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@ThreadingModel Apartment Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@ C:\WINDOWS\system32\OLE32.DLL Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@8a8aec57dd6508a385616fbc86791ec2 0xFA 0xEA 0x66 0x7F ... ---- Disk sectors - GMER 1.0.15 ---- Disk \Device\Harddisk0\DR0 MBR read error Disk \Device\Harddisk0\DR0 MBR BIOS signature not found 0 ---- EOF - GMER 1.0.15 ----