API tools faq
paste
Guest User

Untitled

a guest
Jun 19th, 2016
58
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 33.17 KB | None | 0 0
raw download clone embed print report
  1. GMER 2.2.19882 - http://www.gmer.net
  2. Rootkit scan 2016-06-19 15:16:23
  3. Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\0000002d ST1000DM003-1SB102 rev.CC43 931,51GB
  4. Running: gmer.exe; Driver: C:\Users\komputer\AppData\Local\Temp\ffddipoc.sys
  5.  
  6.  
  7. ---- User code sections - GMER 2.2 ----
  8.  
  9. ? C:\Windows\SYSTEM32\NTASN1.dll [2608] entry point in ".rdata" section 0000000071f1bb10
  10. ? C:\Windows\SYSTEM32\ActXPrxy.dll [3132] entry point in ".rdata" section 000000006f0dbd10
  11. ? C:\Windows\SYSTEM32\NTASN1.dll [4524] entry point in ".rdata" section 0000000071f1bb10
  12. ? C:\Windows\system32\apphelp.dll [4524] entry point in ".rdata" section 0000000072050380
  13. ? C:\Windows\SYSTEM32\iertutil.dll [4220] entry point in ".rdata" section 000000007066d380
  14. ? C:\Windows\SYSTEM32\NTASN1.dll [4220] entry point in ".rdata" section 0000000071f1bb10
  15. ? C:\Windows\system32\apphelp.dll [2420] entry point in ".rdata" section 0000000072050380
  16. ? C:\Windows\SYSTEM32\iertutil.dll [4292] entry point in ".rdata" section 000000007066d380
  17. ? C:\Windows\system32\wbem\wbemsvc.dll [4292] entry point in ".rdata" section 0000000074018fa0
  18. ? C:\Windows\SYSTEM32\NTASN1.dll [4292] entry point in ".rdata" section 0000000071f1bb10
  19. ? C:\Windows\SYSTEM32\srpapi.dll [4292] entry point in ".rdata" section 0000000069b22a90
  20. ? C:\Windows\SYSTEM32\ActXPrxy.dll [4292] entry point in ".rdata" section 000000006f0dbd10
  21. ? C:\Windows\SYSTEM32\PhotoMetadataHandler.dll [4292] entry point in ".rdata" section 0000000066135fc0
  22. ? C:\Windows\SYSTEM32\apphelp.dll [4292] entry point in ".rdata" section 0000000072050380
  23. ? C:\Windows\SYSTEM32\iertutil.dll [3164] entry point in ".rdata" section 000000007066d380
  24. ? C:\Windows\system32\apphelp.dll [6556] entry point in ".rdata" section 0000000072050380
  25. ? C:\Windows\system32\wbem\wbemsvc.dll [3456] entry point in ".rdata" section 0000000074018fa0
  26. ? C:\Windows\SYSTEM32\iertutil.dll [3456] entry point in ".rdata" section 000000007066d380
  27. ? C:\Windows\system32\apphelp.dll [12348] entry point in ".rdata" section 0000000072050380
  28. ? C:\Windows\SYSTEM32\iertutil.dll [12348] entry point in ".rdata" section 000000007066d380
  29. ? C:\Windows\system32\apphelp.dll [12964] entry point in ".rdata" section 0000000072050380
  30. ? C:\Windows\system32\apphelp.dll [12152] entry point in ".rdata" section 0000000072050380
  31.  
  32. ---- User IAT/EAT - GMER 2.2 ----
  33.  
  34. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffc769c002c]
  35. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  36. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  37. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  38. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\shlwapi.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  39. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  40. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  41. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  42. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  43. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  44. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  45. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[5288] @ C:\Windows\SYSTEM32\dwrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffbf9489728] C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\53.0.2772.0\chrome_child.dll
  46. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffc769c002c]
  47. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  48. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  49. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  50. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\shlwapi.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  51. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  52. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  53. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  54. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  55. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  56. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  57. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11832] @ C:\Windows\SYSTEM32\dwrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffbf9489728] C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\53.0.2772.0\chrome_child.dll
  58. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffc769c002c]
  59. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  60. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  61. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  62. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\shlwapi.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  63. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  64. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  65. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\ole32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  66. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\system32\ole32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  67. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffc769c006c]
  68. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffc74a9002c]
  69. IAT C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\chrome.exe[11296] @ C:\Windows\SYSTEM32\dwrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffbf9489728] C:\Users\komputer\AppData\Local\Google\Chrome SxS\Application\53.0.2772.0\chrome_child.dll
  70.  
  71. ---- Threads - GMER 2.2 ----
  72.  
  73. Thread C:\Windows\system32\csrss.exe [600:7468] fffff9613cfd4030
  74. Thread C:\Windows\Explorer.EXE [1904:4536] 00007ffc29500250
  75. Thread C:\Windows\System32\RuntimeBroker.exe [3252:7228] 00007ffc18ee0250
  76. Thread C:\Windows\System32\RuntimeBroker.exe [3252:6576] 00007ffc18ee0250
  77. Thread C:\Windows\System32\RuntimeBroker.exe [3252:11156] 00007ffc18ee0250
  78. Thread C:\Windows\system32\mmc.exe [11124:7452] 00007ffc2e849230
  79. Thread C:\Windows\system32\mmc.exe [11124:3520] 00007ffc0a525ae0
  80. Thread C:\Windows\system32\mmc.exe [11124:6668] 00007ffc0a525ae0
  81. Thread C:\Windows\system32\mmc.exe [11124:11632] 00007ffc0a547830
  82. ---- Processes - GMER 2.2 ----
  83.  
  84. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (Dism Host Servicing Process/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ff626980000
  85. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\DismCorePS.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] 00007ffbf5dd0000
  86. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismprov.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Provider Store/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5d90000
  87. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\OSProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM OS Services Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5d60000
  88. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\LogProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Logging Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5d30000
  89. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\CbsProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Package Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5c50000
  90. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\MsiProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Msi Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5ba0000
  91. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\IntlProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM International Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5b40000
  92. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\IBSProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM IBS Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5b20000
  93. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\DmiProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Driver Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5ac0000
  94. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\UnattendProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Unattend Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5a70000
  95. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\SmiProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Settings Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf57d0000
  96. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\AppxProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM App Package (.appx) Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5750000
  97. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\ProvProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Provisioning Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf56a0000
  98. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\AssocProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Assoc Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5a50000
  99. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\GenericProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Generic Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf58e0000
  100. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\OfflineSetupProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM OfflineSetup Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5a30000
  101. Library C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\TransmogProvider.dll (*** suspicious ***) @ C:\Users\komputer\AppData\Local\Temp\3126E3D0-820A-4042-8204-E66BA96FBF3D\dismhost.exe [11616] (DISM Transmogrify Provider/Microsoft Corporation SIGNED)(2016-06-19 12:40:52) 00007ffbf5610000
  102.  
  103. ---- Registry - GMER 2.2 ----
  104.  
  105. Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@PendingFileRenameOperations \??\C:\Windows\TEMP\INS_b84f8ec1.TMP??\??\C:\Windows\TEMP\NvidiaLogging??\??\C:\Users\komputer\AppData\Local\Temp\MSNET-6fd97e0b.NVX??\??\C:\Windows\system32\DRIVERS\SET1163.tmp??\??\C:\Windows\system32\SET1286.tmp??\??\C:\Windows\system32\SET1DD0.tmp??\??\C:\Windows\SysWow64\SET2408.tmp??\??\C:\Users\komputer\AppData\Local\Temp\INS_733a9329.TMP??\??\C:\Users\komputer\AppData\Local\Temp\F8EA.tmp??\??\C:\Users\komputer\AppData\Local\Temp\GoogleUpdate.exe8dffed??\??\C:\Users\komputer\AppData\Local\Temp\goopdate.dll8e001c??
  106. Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed -900742669
  107. Reg HKLM\SYSTEM\CurrentControlSet\Services\IKEEXT@Start 3
  108. Reg HKLM\SYSTEM\CurrentControlSet\Services\IKEEXT
  109. Reg HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@LastBootPlanUserTime ?niedz.?, ?cze ?19 ?16, 10:49:54 AM????????????????????????????
  110. Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch 1104
  111. Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ab494b66-a3c7-4379-bede-43d5f04c9208}@LeaseObtainedTime 1466336855
  112. Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ab494b66-a3c7-4379-bede-43d5f04c9208}@T1 1466340455
  113. Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ab494b66-a3c7-4379-bede-43d5f04c9208}@T2 1466343155
  114. Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ab494b66-a3c7-4379-bede-43d5f04c9208}@LeaseTerminatesTime 1466344055
  115. Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeConfidence 6
  116. Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeEstimated 0x1F 0x45 0x28 0x4F ...
  117. Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeHigh 0x1F 0xAD 0xEC 0xB0 ...
  118. Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeLow 0x1F 0xDD 0x63 0xED ...
  119. Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeTickCount 0x4F 0xD6 0xCB 0x00 ...
  120.  
  121. ---- Disk sectors - GMER 2.2 ----
  122.  
  123. Disk \Device\Harddisk0\DR0 unknown MBR code
  124.  
  125. ---- EOF - GMER 2.2 ----
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!