zacinki przegladarki
11 Wrz 2012, 23:18
Witam. Mam problem tego iż.. wlączam kompa i gram oraz słucham muzyki z yt... jakieś 30 min wszystko jest dobrze a po tym czasie zaczyna się zacinanie muzyki w czasie gdy w grze pojawiają się przebłyski. Prowadzi to do tego że przeglądarka i cały komp zacinają się na minute, 5 min a czasami na amen. Bez grania można posiedzieć jakieś hm.. 1-2h. To samo ze ściąganiem czegokolwiek czy to ze strony producenta czy ze stron uploaderskich.. po około 40 minut ściągania bluescreen. Wiem że dobrym wyjściem jest format ale chciałbym rozwiązać to inaczej bo format to ostateczność. Czekam na odp, dzięki!!;)
Re: zacinki przegladarki
12 Wrz 2012, 00:03
a no i zachowuje sie wtedy jak by mu brakowało ram. Przezroczyste paski aero sie wyłączają. mam 2 gb
Re: zacinki przegladarki
12 Wrz 2012, 00:05
Na początek przeinstaluj sterowniki od karty graficznej,przeglądarke oraz flash player'a podaj także screen shoty z HD Tune http://www.instalki.pl/programy/downloa ... _Tune.html z zakładek health i error scan
Re: zacinki przegladarki
12 Wrz 2012, 09:54
dowiedziałem się że to wina trojana o nazwie svchost.exe w menadżerze zadań mam około 15 procesów z tym czymś i nwm jak to usunąć.
Re: zacinki przegladarki
12 Wrz 2012, 13:06
15 to niezbyt zdrowo, ale to akurat wina usług odpalanych przez kompa, które multiplikują ten proces. Niemniej jednak 15 to wciąż nic nadzwyczajnego, a svchost.exe nie jest żadnym wirusem, o ile jest w folderze WINDOWS\system32 - każda inna lokalizacja to "podpucha"
Re: zacinki przegladarki
12 Wrz 2012, 13:46
a jak sprawdzic w jakiej lokacji jest to ustrojstwo??;d
Re: zacinki przegladarki
12 Wrz 2012, 15:51
Po kolei:
Czy problem występuje także na innych przeglądarkach???
Podaj odczyt pliku .dmp
http://www.instalki.pl/programy/downloa ... nView.html
Podaj logi z:
OTL otl-gmer-silent-runners-sdfix-i-inne-poradnik-t13967.html#p107754
Gmer otl-gmer-silent-runners-sdfix-i-inne-poradnik-t13967.html#p88736
Autoruns otl-gmer-silent-runners-sdfix-i-inne-poradnik-t13967-15.html#p138589
Czy problem występuje także na innych przeglądarkach???
Podaj odczyt pliku .dmp
http://www.instalki.pl/programy/downloa ... nView.htmlPodaj logi z:
OTL
otl-gmer-silent-runners-sdfix-i-inne-poradnik-t13967.html#p107754Gmer
otl-gmer-silent-runners-sdfix-i-inne-poradnik-t13967.html#p88736Autoruns
otl-gmer-silent-runners-sdfix-i-inne-poradnik-t13967-15.html#p138589
Re: zacinki przegladarki
12 Wrz 2012, 15:55
w każdej..
Re: zacinki przegladarki
12 Wrz 2012, 16:00
i jak dokonać tego odczytu?
Re: zacinki przegladarki
12 Wrz 2012, 16:25
Po uruchomieniu programu pojawią sie w oknie pliki .dmp, po prostu dwuklik na niego i masz odczyt. Możesz screenshoty porobić.
Re: zacinki przegladarki
12 Wrz 2012, 16:34
nic sie nie pojawia.. dobra miejsza z tym zrobie formata
Re: zacinki przegladarki
12 Wrz 2012, 16:38
To podaj chociaż logi. Format to nie jest lekarstwo na wszystkie problemy.
Re: zacinki przegladarki
12 Wrz 2012, 17:14
Ok już robię tylko troche to trwa..
Re: zacinki przegladarki
12 Wrz 2012, 17:27
http://www.wklej.eu/index.php?id=7baa067daf log otl
http://www.wklej.eu/index.php?id=305b665f07 extras za chwile zrobie pozostale
http://www.wklej.eu/index.php?id=305b665f07 extras za chwile zrobie pozostale
Re: zacinki przegladarki
12 Wrz 2012, 18:19
- Kod:
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-09-12 18:20:35
Windows 6.1.7600 Harddisk0\DR0 -> \Device\0000006b WDC_WD25 rev.01.0
Running: gmer.exe; Driver: C:\Users\Marcin\AppData\Local\Temp\awrdrpoc.sys
---- Kernel code sections - GMER 1.0.15 ----
.text ntkrnlpa.exe!ZwRollbackTransaction + 13E9 82E90599 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 82EB5092 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text storport.sys!DllInitialize + 6112 88F2C490 1 Byte [CC] {INT 3 }
.text C:\Windows\system32\DRIVERS\lirsgt.sys section is writeable [0x8F207300, 0x1B7E, 0xE8000020]
.text autochk.exe 00291204 4 Bytes [00, 00, 00, 00] {ADD [EAX], AL; ADD [EAX], AL}
.text autochk.exe 0029120C 1 Byte [00]
.text autochk.exe 00291210 6 Bytes [7E, 3F, BD, 29, 82, AE]
.text autochk.exe 00291217 4 Bytes [0E, 40, 00, 25]
.text autochk.exe 0029121C 1 Byte [53]
.text ...
---- User code sections - GMER 1.0.15 ----
.text C:\Program Files\ESET\ESET Smart Security\ekrn.exe[1708] kernel32.dll!SetUnhandledExceptionFilter 75E430E2 4 Bytes [C2, 04, 00, 00]
.text C:\Program Files\Real\RealPlayer\Update\realsched.exe[2808] kernel32.dll!SetUnhandledExceptionFilter 75E430E2 5 Bytes [33, C0, C2, 04, 00] {XOR EAX, EAX; RET 0x4}
.text C:\Program Files\Gadu-Gadu 10\gg.exe[3092] USER32.dll!EndPaint 76BF7B73 5 Bytes JMP 106E37A0 C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll
.text C:\Program Files\Gadu-Gadu 10\gg.exe[3092] USER32.dll!BeginPaint 76BF7B87 5 Bytes JMP 106E3730 C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtCreateFile + 6 778946B6 4 Bytes [28, 00, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtCreateFile + B 778946BB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtMapViewOfSection + 6 77894D16 1 Byte [28]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtMapViewOfSection + 6 77894D16 4 Bytes [28, 03, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtMapViewOfSection + B 77894D1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenFile + 6 77894DC6 4 Bytes [68, 00, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenFile + B 77894DCB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenProcess + 6 77894E76 4 Bytes [A8, 01, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenProcess + B 77894E7B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenProcessToken + 6 77894E86 4 Bytes CALL 76898C8C C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenProcessToken + B 77894E8B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenProcessTokenEx + 6 77894E96 4 Bytes [A8, 02, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenProcessTokenEx + B 77894E9B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenThread + 6 77894EF6 4 Bytes [68, 01, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenThread + B 77894EFB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenThreadToken + 6 77894F06 4 Bytes [68, 02, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenThreadToken + B 77894F0B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenThreadTokenEx + 6 77894F16 4 Bytes CALL 76898D1D C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtOpenThreadTokenEx + B 77894F1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtQueryAttributesFile + 6 77895026 4 Bytes [A8, 00, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtQueryAttributesFile + B 7789502B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtQueryFullAttributesFile + 6 778950D6 4 Bytes CALL 76898EDB C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtQueryFullAttributesFile + B 778950DB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtSetInformationFile + 6 77895726 4 Bytes [28, 01, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtSetInformationFile + B 7789572B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtSetInformationThread + 6 77895786 4 Bytes [28, 02, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtSetInformationThread + B 7789578B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 1 Byte [68]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 4 Bytes [68, 03, 3E, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5096] ntdll.dll!NtUnmapViewOfSection + B 77895AAB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtCreateFile + 6 778946B6 4 Bytes [28, 00, 28, 00] {SUB [EAX], AL; SUB [EAX], AL}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtCreateFile + B 778946BB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtMapViewOfSection + 6 77894D16 1 Byte [28]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtMapViewOfSection + 6 77894D16 4 Bytes [28, 03, 28, 00] {SUB [EBX], AL; SUB [EAX], AL}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtMapViewOfSection + B 77894D1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenFile + 6 77894DC6 4 Bytes [68, 00, 28, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenFile + B 77894DCB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenProcess + 6 77894E76 4 Bytes [A8, 01, 28, 00] {TEST AL, 0x1; SUB [EAX], AL}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenProcess + B 77894E7B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenProcessToken + 6 77894E86 4 Bytes CALL 7689768C C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenProcessToken + B 77894E8B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenProcessTokenEx + 6 77894E96 4 Bytes [A8, 02, 28, 00] {TEST AL, 0x2; SUB [EAX], AL}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenProcessTokenEx + B 77894E9B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenThread + 6 77894EF6 4 Bytes [68, 01, 28, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenThread + B 77894EFB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenThreadToken + 6 77894F06 4 Bytes [68, 02, 28, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenThreadToken + B 77894F0B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenThreadTokenEx + 6 77894F16 4 Bytes CALL 7689771D C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtOpenThreadTokenEx + B 77894F1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtQueryAttributesFile + 6 77895026 4 Bytes [A8, 00, 28, 00] {TEST AL, 0x0; SUB [EAX], AL}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtQueryAttributesFile + B 7789502B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtQueryFullAttributesFile + 6 778950D6 4 Bytes CALL 768978DB C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtQueryFullAttributesFile + B 778950DB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtSetInformationFile + 6 77895726 4 Bytes [28, 01, 28, 00] {SUB [ECX], AL; SUB [EAX], AL}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtSetInformationFile + B 7789572B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtSetInformationThread + 6 77895786 4 Bytes [28, 02, 28, 00] {SUB [EDX], AL; SUB [EAX], AL}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtSetInformationThread + B 7789578B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 1 Byte [68]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 4 Bytes [68, 03, 28, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5464] ntdll.dll!NtUnmapViewOfSection + B 77895AAB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtCreateFile + 6 778946B6 4 Bytes [28, 00, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtCreateFile + B 778946BB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtMapViewOfSection + 6 77894D16 1 Byte [28]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtMapViewOfSection + 6 77894D16 4 Bytes [28, 03, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtMapViewOfSection + B 77894D1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenFile + 6 77894DC6 4 Bytes [68, 00, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenFile + B 77894DCB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenProcess + 6 77894E76 4 Bytes [A8, 01, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenProcess + B 77894E7B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenProcessToken + 6 77894E86 4 Bytes CALL 7689758C C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenProcessToken + B 77894E8B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenProcessTokenEx + 6 77894E96 4 Bytes [A8, 02, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenProcessTokenEx + B 77894E9B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenThread + 6 77894EF6 4 Bytes [68, 01, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenThread + B 77894EFB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenThreadToken + 6 77894F06 4 Bytes [68, 02, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenThreadToken + B 77894F0B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenThreadTokenEx + 6 77894F16 4 Bytes CALL 7689761D C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtOpenThreadTokenEx + B 77894F1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtQueryAttributesFile + 6 77895026 4 Bytes [A8, 00, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtQueryAttributesFile + B 7789502B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtQueryFullAttributesFile + 6 778950D6 4 Bytes CALL 768977DB C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtQueryFullAttributesFile + B 778950DB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtSetInformationFile + 6 77895726 4 Bytes [28, 01, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtSetInformationFile + B 7789572B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtSetInformationThread + 6 77895786 4 Bytes [28, 02, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtSetInformationThread + B 7789578B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 1 Byte [68]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 4 Bytes [68, 03, 27, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5564] ntdll.dll!NtUnmapViewOfSection + B 77895AAB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtCreateFile + 6 778946B6 4 Bytes [28, 00, 2C, 00] {SUB [EAX], AL; SUB AL, 0x0}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtCreateFile + B 778946BB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtMapViewOfSection + 6 77894D16 1 Byte [28]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtMapViewOfSection + 6 77894D16 4 Bytes [28, 03, 2C, 00] {SUB [EBX], AL; SUB AL, 0x0}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtMapViewOfSection + B 77894D1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenFile + 6 77894DC6 4 Bytes [68, 00, 2C, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenFile + B 77894DCB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenProcess + 6 77894E76 4 Bytes [A8, 01, 2C, 00] {TEST AL, 0x1; SUB AL, 0x0}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenProcess + B 77894E7B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenProcessToken + 6 77894E86 4 Bytes CALL 76897A8C C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenProcessToken + B 77894E8B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenProcessTokenEx + 6 77894E96 4 Bytes [A8, 02, 2C, 00] {TEST AL, 0x2; SUB AL, 0x0}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenProcessTokenEx + B 77894E9B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenThread + 6 77894EF6 4 Bytes [68, 01, 2C, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenThread + B 77894EFB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenThreadToken + 6 77894F06 4 Bytes [68, 02, 2C, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenThreadToken + B 77894F0B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenThreadTokenEx + 6 77894F16 4 Bytes CALL 76897B1D C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtOpenThreadTokenEx + B 77894F1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtQueryAttributesFile + 6 77895026 4 Bytes [A8, 00, 2C, 00] {TEST AL, 0x0; SUB AL, 0x0}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtQueryAttributesFile + B 7789502B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtQueryFullAttributesFile + 6 778950D6 4 Bytes CALL 76897CDB C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtQueryFullAttributesFile + B 778950DB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtSetInformationFile + 6 77895726 4 Bytes [28, 01, 2C, 00] {SUB [ECX], AL; SUB AL, 0x0}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtSetInformationFile + B 7789572B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtSetInformationThread + 6 77895786 4 Bytes [28, 02, 2C, 00] {SUB [EDX], AL; SUB AL, 0x0}
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtSetInformationThread + B 7789578B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 1 Byte [68]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 4 Bytes [68, 03, 2C, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[5888] ntdll.dll!NtUnmapViewOfSection + B 77895AAB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtCreateFile + 6 778946B6 4 Bytes [28, 00, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtCreateFile + B 778946BB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtMapViewOfSection + 6 77894D16 1 Byte [28]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtMapViewOfSection + 6 77894D16 4 Bytes [28, 03, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtMapViewOfSection + B 77894D1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenFile + 6 77894DC6 4 Bytes [68, 00, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenFile + B 77894DCB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenProcess + 6 77894E76 4 Bytes [A8, 01, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenProcess + B 77894E7B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenProcessToken + 6 77894E86 4 Bytes CALL 7689948C C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenProcessToken + B 77894E8B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenProcessTokenEx + 6 77894E96 4 Bytes [A8, 02, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenProcessTokenEx + B 77894E9B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenThread + 6 77894EF6 4 Bytes [68, 01, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenThread + B 77894EFB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenThreadToken + 6 77894F06 4 Bytes [68, 02, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenThreadToken + B 77894F0B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenThreadTokenEx + 6 77894F16 4 Bytes CALL 7689951D C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtOpenThreadTokenEx + B 77894F1B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtQueryAttributesFile + 6 77895026 4 Bytes [A8, 00, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtQueryAttributesFile + B 7789502B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtQueryFullAttributesFile + 6 778950D6 4 Bytes CALL 768996DB C:\Windows\system32\SHELL32.dll (Wspólna biblioteka DLL Powłoki systemu Windows/Microsoft Corporation)
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtQueryFullAttributesFile + B 778950DB 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtSetInformationFile + 6 77895726 4 Bytes [28, 01, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtSetInformationFile + B 7789572B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtSetInformationThread + 6 77895786 4 Bytes [28, 02, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtSetInformationThread + B 7789578B 1 Byte [E2]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 1 Byte [68]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtUnmapViewOfSection + 6 77895AA6 4 Bytes [68, 03, 46, 00]
.text C:\Program Files\Google\Chrome\Application\chrome.exe[6008] ntdll.dll!NtUnmapViewOfSection + B 77895AAB 1 Byte [E2]
---- User IAT/EAT - GMER 1.0.15 ----
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [746124FA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [745F565B] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [745F5719] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [74612575] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [746085D9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [74604D8D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [74605134] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [74605209] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromHBITMAP] [74606736] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [74608330] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [7460887F] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [746090E0] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [7460E283] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1576] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [74604CBF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Program Files\Zune\ZuneLauncher.exe[2716] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [75935E25] C:\Windows\system32\apphelp.dll (Biblioteka klienta zgodności aplikacji/Microsoft Corporation)
IAT C:\Program Files\Zune\ZuneLauncher.exe[2716] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [75935E25] C:\Windows\system32\apphelp.dll (Biblioteka klienta zgodności aplikacji/Microsoft Corporation)
IAT C:\Program Files\Zune\ZuneLauncher.exe[2716] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [75935E25] C:\Windows\system32\apphelp.dll (Biblioteka klienta zgodności aplikacji/Microsoft Corporation)
IAT C:\Program Files\Zune\ZuneLauncher.exe[2716] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [75935E25] C:\Windows\system32\apphelp.dll (Biblioteka klienta zgodności aplikacji/Microsoft Corporation)
---- Devices - GMER 1.0.15 ----
Device \Driver\ACPI_HAL \Device\00000057 halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume4 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume5 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume6 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
---- Threads - GMER 1.0.15 ----
Thread System [4:732] 86AE10F4
---- EOF - GMER 1.0.15 ----