gumisiowystyl Opublikowano 1 Lutego 2013 Zgłoś Udostępnij Opublikowano 1 Lutego 2013 Mam problem, komputer po 15 minutach pracy, po prostu się resetuje a potem wyskakuje czarne okno z wiadomości że albo mam zresetować biosy. może ktoś zajrzeć na moje logi? i podpowiedzieć co się dzieje z moim komputerem? Pokaż ukrytą zawartość GMER 2.0.18454 - http://www.gmer.net Rootkit scan 2013-02-01 18:12:38 Windows 6.0.6001 Service Pack 1 \Device\Harddisk0\DR0 -> \Device\Ide\IdePort2 MAXTOR_STM3320820AS rev.3.AAE 298,09GB Running: lo2r8mt1.exe; Driver: C:\Users\oem\AppData\Local\Temp\uwldapow.sys ---- User code sections - GMER 2.0 ---- .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, F4, 2A, 00] {SUB AH, DH; SUB AL, [EAX]} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, F7, 2A, 00] {SUB BH, DH; SUB AL, [EAX]} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, F4, 2A, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, F5, 2A, 00] {TEST AL, 0xf5; SUB AL, [EAX]} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 7641AFE8 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, F6, 2A, 00] {TEST AL, 0xf6; SUB AL, [EAX]} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, F5, 2A, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, F6, 2A, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 7641B069 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, F4, 2A, 00] {TEST AL, 0xf4; SUB AL, [EAX]} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 7641B1A7 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, F5, 2A, 00] {SUB CH, DH; SUB AL, [EAX]} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, F6, 2A, 00] {SUB DH, DH; SUB AL, [EAX]} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, F7, 2A, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, DC, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, DF, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, DC, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, DD, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 76427FD0 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, DE, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, DD, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, DE, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 76428051 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, DC, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 7642818F C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, DD, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, DE, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, DF, FA, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, C0, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, C3, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, C0, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, C1, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 764218B4 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, C2, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, C1, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, C2, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 76421935 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, C0, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 76421A73 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, C1, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, C2, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, C3, 93, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, D8, E5, 00] {SUB AL, BL; IN EAX, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, DB, E5, 00] {SUB BL, BL; IN EAX, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, D8, E5, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, D9, E5, 00] {TEST AL, 0xd9; IN EAX, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 76426ACC C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, DA, E5, 00] {TEST AL, 0xda; IN EAX, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, D9, E5, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, DA, E5, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 76426B4D C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, D8, E5, 00] {TEST AL, 0xd8; IN EAX, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 76426C8B C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, D9, E5, 00] {SUB CL, BL; IN EAX, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, DA, E5, 00] {SUB DL, BL; IN EAX, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, DB, E5, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, 70, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, 73, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, 70, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, 71, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 76427864 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, 72, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, 71, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, 72, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 764278E5 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, 70, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 76427A23 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, 71, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, 72, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, 73, F3, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, EC, 63, 00] {SUB AH, CH; ARPL [EAX], AX} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, EF, 63, 00] {SUB BH, CH; ARPL [EAX], AX} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, EC, 63, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, ED, 63, 00] {TEST AL, 0xed; ARPL [EAX], AX} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 7641E8E0 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, EE, 63, 00] {TEST AL, 0xee; ARPL [EAX], AX} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, ED, 63, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, EE, 63, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 7641E961 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, EC, 63, 00] {TEST AL, 0xec; ARPL [EAX], AX} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 7641EA9F C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, ED, 63, 00] {SUB CH, CH; ARPL [EAX], AX} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, EE, 63, 00] {SUB DH, CH; ARPL [EAX], AX} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, EF, 63, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, 60, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, 63, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, 60, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, 61, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 76422954 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, 62, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, 61, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, 62, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 764229D5 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, 60, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 76422B13 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, 61, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, 62, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, 63, A4, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, AC, B6, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, AF, B6, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, AC, B6, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, AD, B6, 00] {TEST AL, 0xad; MOV DH, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 76423BA0 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, AE, B6, 00] {TEST AL, 0xae; MOV DH, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, AD, B6, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, AE, B6, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 76423C21 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, AC, B6, 00] {TEST AL, 0xac; MOV DH, 0x0} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 76423D5F C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, AD, B6, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, AE, B6, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, AF, B6, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, 08, D1, 00] {SUB [EAX], CL; ROL DWORD [EAX], 0x1} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, 0B, D1, 00] {SUB [EBX], CL; ROL DWORD [EAX], 0x1} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, 08, D1, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, 09, D1, 00] {TEST AL, 0x9; ROL DWORD [EAX], 0x1} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 764255FC C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, 0A, D1, 00] {TEST AL, 0xa; ROL DWORD [EAX], 0x1} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, 09, D1, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, 0A, D1, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 7642567D C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, 08, D1, 00] {TEST AL, 0x8; ROL DWORD [EAX], 0x1} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 764257BB C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, 09, D1, 00] {SUB [ECX], CL; ROL DWORD [EAX], 0x1} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, 0A, D1, 00] {SUB [EDX], CL; ROL DWORD [EAX], 0x1} .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, 0B, D1, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtCreateFile + 6 77417C7E 4 Bytes [28, 9C, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtCreateFile + B 77417C83 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtMapViewOfSection + 6 774183CE 4 Bytes [28, 9F, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtMapViewOfSection + B 774183D3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenFile + 6 7741845E 4 Bytes [68, 9C, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenFile + B 77418463 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenProcess + 6 774184DE 4 Bytes [A8, 9D, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenProcess + B 774184E3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenProcessToken + 6 774184EE 4 Bytes CALL 7641EC90 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenProcessToken + B 774184F3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenProcessTokenEx + 6 774184FE 4 Bytes [A8, 9E, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenProcessTokenEx + B 77418503 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenThread + 6 7741854E 4 Bytes [68, 9D, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenThread + B 77418553 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenThreadToken + 6 7741855E 4 Bytes [68, 9E, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenThreadToken + B 77418563 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenThreadTokenEx + 6 7741856E 4 Bytes CALL 7641ED11 C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtOpenThreadTokenEx + B 77418573 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtQueryAttributesFile + 6 774185FE 4 Bytes [A8, 9C, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtQueryAttributesFile + B 77418603 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtQueryFullAttributesFile + 6 774186AE 4 Bytes CALL 7641EE4F C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation) .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtQueryFullAttributesFile + B 774186B3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtSetInformationFile + 6 77418B8E 4 Bytes [28, 9D, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtSetInformationFile + B 77418B93 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtSetInformationThread + 6 77418BDE 4 Bytes [28, 9E, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtSetInformationThread + B 77418BE3 1 Byte [E2] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtUnmapViewOfSection + 6 77418E7E 4 Bytes [68, 9F, 67, 00] .text C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] ntdll.dll!NtUnmapViewOfSection + B 77418E83 1 Byte [E2] ---- User IAT/EAT - GMER 2.0 ---- IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[492] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 002C0010 IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[832] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00FB0010 IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[1988] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00950010 IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [74498864] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [744D9855] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [7449B984] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [7448FB47] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [74497A29] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [7448EA65] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [744CB12D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [7449BC4A] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [74490756] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [744906BD] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [744871B3] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [7451D9E0] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [744B7329] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [7448E109] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [7448697E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [744869A9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Windows\Explorer.EXE[2016] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [74492475] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18551_none_9e7a1850c9c1b3dc\gdiplus.dll (Microsoft GDI+/Microsoft Corporation) IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2248] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00E70010 IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[2992] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00F50010 IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3048] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00650010 IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3096] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00A60010 IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3404] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00B80010 IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3540] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00D30010 IAT C:\Users\oem\AppData\Local\Google\Chrome\Application\chrome.exe[3604] @ C:\Windows\system32\RPCRT4.dll [KERNEL32.dll!CreateNamedPipeW] 00680010 ---- Disk sectors - GMER 2.0 ---- Disk \Device\Harddisk0\DR0 sector 00: rootkit-like behavior ---- EOF - GMER 2.0 ---- Extras.TxtPobieranie informacji ... OTL.TxtPobieranie informacji ... Odnośnik do komentarza
p4t4 Opublikowano 1 Lutego 2013 Zgłoś Udostępnij Opublikowano 1 Lutego 2013 Czy ktoś podkręcał procesor? Odnośnik do komentarza
picasso Opublikowano 1 Lutego 2013 Zgłoś Udostępnij Opublikowano 1 Lutego 2013 W tym konkretnym przypadku nic tu po logach OTL / GMER, problem objawia się jako sprzętowy: Cytat po prostu się resetuje a potem wyskakuje czarne okno z wiadomości że albo mam zresetować biosy I temat przenoszę do działu Hardware. Zasady tego działu, inny typ danych wymagany: KLIK. EDIT: Doklejam GMER do pierwszego posta. Tym się już nie zajmuj. Dostarcz dane o sprzęcie. . Odnośnik do komentarza
gumisiowystyl Opublikowano 1 Lutego 2013 Autor Zgłoś Udostępnij Opublikowano 1 Lutego 2013 PC Wizard : OEM-PC - Drives.txtPobieranie informacji ... Odnośnik do komentarza
wieslaw531 Opublikowano 1 Lutego 2013 Zgłoś Udostępnij Opublikowano 1 Lutego 2013 Ten załącznik jest w gumisiowym stylu i trudno go odczytać. Pokaż w forumowym stylu: HWInfo - System Summary + z zakładki Sensors. Dodatkowo SMART z CrystalDiskInfo. Odnośnik do komentarza
Rekomendowane odpowiedzi
Jeśli chcesz dodać odpowiedź, zaloguj się lub zarejestruj nowe konto
Jedynie zarejestrowani użytkownicy mogą komentować zawartość tej strony.
Zarejestruj nowe konto
Załóż nowe konto. To bardzo proste!
Zarejestruj sięZaloguj się
Posiadasz już konto? Zaloguj się poniżej.
Zaloguj się