GMER 2.2.19882 - http://www.gmer.net Rootkit scan 2017-05-06 08:35:10 Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\00000031 TOSHIBA_MQ01ABD100 rev.AX1P2C 931,51GB Running: 179dcr3f.exe; Driver: C:\Users\HP\AppData\Local\Temp\pgldapob.sys ---- User code sections - GMER 2.2 ---- ? C:\WINDOWS\system32\apphelp.dll [2096] entry point in ".rdata" section 000000007237f7c0 ? C:\WINDOWS\system32\wbem\wbemsvc.dll [828] entry point in ".rdata" section 000000006dc58fc0 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtSetInformationThread 00007ffa92086260 16 bytes {MOV RAX, 0x7ff660bff960; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThreadToken 00007ffa92086540 16 bytes {MOV RAX, 0x7ff660bff9e0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcess 00007ffa92086580 16 bytes {MOV RAX, 0x7ff660bffdd0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtSetInformationFile 00007ffa920865a0 16 bytes {MOV RAX, 0x7ff660bffbc0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtMapViewOfSection 00007ffa920865c0 16 bytes {MOV RAX, 0x7ff660bff840; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 00007ffa92086600 16 bytes {MOV RAX, 0x7ff660bff8b0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 00007ffa920866a0 16 bytes {MOV RAX, 0x7ff660bffa50; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcessTokenEx 00007ffa920866c0 16 bytes {MOV RAX, 0x7ff660bffe20; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenFile 00007ffa92086720 16 bytes {MOV RAX, 0x7ff660bffb40; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtQueryAttributesFile 00007ffa92086860 16 bytes {MOV RAX, 0x7ff660bffb80; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtCreateFile 00007ffa92086b60 16 bytes {MOV RAX, 0x7ff660bffac0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcessToken 00007ffa920883d0 16 bytes {MOV RAX, 0x7ff660bffe00; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThread 00007ffa92088490 16 bytes {MOV RAX, 0x7ff660bffda0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] C:\WINDOWS\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 00007ffa92088730 16 bytes {MOV RAX, 0x7ff660bffba0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtSetInformationThread 00007ffa92086260 16 bytes {MOV RAX, 0x7ff660bff960; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThreadToken 00007ffa92086540 16 bytes {MOV RAX, 0x7ff660bff9e0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcess 00007ffa92086580 16 bytes {MOV RAX, 0x7ff660bffdd0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtSetInformationFile 00007ffa920865a0 16 bytes {MOV RAX, 0x7ff660bffbc0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtMapViewOfSection 00007ffa920865c0 16 bytes {MOV RAX, 0x7ff660bff840; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 00007ffa92086600 16 bytes {MOV RAX, 0x7ff660bff8b0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 00007ffa920866a0 16 bytes {MOV RAX, 0x7ff660bffa50; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcessTokenEx 00007ffa920866c0 16 bytes {MOV RAX, 0x7ff660bffe20; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenFile 00007ffa92086720 16 bytes {MOV RAX, 0x7ff660bffb40; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtQueryAttributesFile 00007ffa92086860 16 bytes {MOV RAX, 0x7ff660bffb80; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtCreateFile 00007ffa92086b60 16 bytes {MOV RAX, 0x7ff660bffac0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcessToken 00007ffa920883d0 16 bytes {MOV RAX, 0x7ff660bffe00; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThread 00007ffa92088490 16 bytes {MOV RAX, 0x7ff660bffda0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] C:\WINDOWS\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 00007ffa92088730 16 bytes {MOV RAX, 0x7ff660bffba0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtSetInformationThread 00007ffa92086260 16 bytes {MOV RAX, 0x7ff660bff960; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThreadToken 00007ffa92086540 16 bytes {MOV RAX, 0x7ff660bff9e0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcess 00007ffa92086580 16 bytes {MOV RAX, 0x7ff660bffdd0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtSetInformationFile 00007ffa920865a0 16 bytes {MOV RAX, 0x7ff660bffbc0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtMapViewOfSection 00007ffa920865c0 16 bytes {MOV RAX, 0x7ff660bff840; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 00007ffa92086600 16 bytes {MOV RAX, 0x7ff660bff8b0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 00007ffa920866a0 16 bytes {MOV RAX, 0x7ff660bffa50; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcessTokenEx 00007ffa920866c0 16 bytes {MOV RAX, 0x7ff660bffe20; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenFile 00007ffa92086720 16 bytes {MOV RAX, 0x7ff660bffb40; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtQueryAttributesFile 00007ffa92086860 16 bytes {MOV RAX, 0x7ff660bffb80; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtCreateFile 00007ffa92086b60 16 bytes {MOV RAX, 0x7ff660bffac0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcessToken 00007ffa920883d0 16 bytes {MOV RAX, 0x7ff660bffe00; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThread 00007ffa92088490 16 bytes {MOV RAX, 0x7ff660bffda0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] C:\WINDOWS\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 00007ffa92088730 16 bytes {MOV RAX, 0x7ff660bffba0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtSetInformationThread 00007ffa92086260 16 bytes {MOV RAX, 0x7ff660bff960; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThreadToken 00007ffa92086540 16 bytes {MOV RAX, 0x7ff660bff9e0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcess 00007ffa92086580 16 bytes {MOV RAX, 0x7ff660bffdd0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtSetInformationFile 00007ffa920865a0 16 bytes {MOV RAX, 0x7ff660bffbc0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtMapViewOfSection 00007ffa920865c0 16 bytes {MOV RAX, 0x7ff660bff840; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtUnmapViewOfSection 00007ffa92086600 16 bytes {MOV RAX, 0x7ff660bff8b0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThreadTokenEx 00007ffa920866a0 16 bytes {MOV RAX, 0x7ff660bffa50; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcessTokenEx 00007ffa920866c0 16 bytes {MOV RAX, 0x7ff660bffe20; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenFile 00007ffa92086720 16 bytes {MOV RAX, 0x7ff660bffb40; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtQueryAttributesFile 00007ffa92086860 16 bytes {MOV RAX, 0x7ff660bffb80; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtCreateFile 00007ffa92086b60 16 bytes {MOV RAX, 0x7ff660bffac0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenProcessToken 00007ffa920883d0 16 bytes {MOV RAX, 0x7ff660bffe00; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtOpenThread 00007ffa92088490 16 bytes {MOV RAX, 0x7ff660bffda0; JMP RAX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] C:\WINDOWS\SYSTEM32\ntdll.dll!NtQueryFullAttributesFile 00007ffa92088730 16 bytes {MOV RAX, 0x7ff660bffba0; JMP RAX} ? C:\WINDOWS\system32\apphelp.dll [5664] entry point in ".rdata" section 000000007237f7c0 ---- User IAT/EAT - GMER 2.2 ---- IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6336] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[5424] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1744] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7680] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7960] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[8144] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4960] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4804] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7504] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[6720] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[7208] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\SHLWAPI.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\USER32.dll[GDI32.dll!GdiDllInitialize] [7ffa9000002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\ole32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\ole32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\SHELL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\SHELL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\COMDLG32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\System32\COMDLG32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[GDI32.dll!GetStockObject] [7ffa9000006c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b\COMCTL32.dll[USER32.dll!RegisterClassW] [7ffa921c002c] IAT C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[1668] @ C:\WINDOWS\SYSTEM32\DWrite.dll[ntdll.dll!NtAlpcConnectPort] [7ffa5982e570] C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\chrome_child.dll ---- Threads - GMER 2.2 ---- Thread C:\WINDOWS\system32\csrss.exe [692:1316] ffffff4f8c736c20 Thread C:\Windows\System32\RuntimeBroker.exe [5040:5584] 00007ffa86ad20e0 ---- Registry - GMER 2.2 ---- Reg HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\AUO159E0_00_07DC_E6^D8A03C3FE36BD7F5A8BA9909FF48DF75@Timestamp 0xAC 0xF1 0x3B 0xEF ... Reg HKLM\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\381b4222-f694-41f0-9685-ff5bb260df2e\7516b95f-f776-4464-8c53-06167f40cc99\aded5e82-b909-4619-9949-f5d71dac0bcb@ACSettingIndex 0 Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed 1532615869 Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@TotalResumeTime 36592607 Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelReturnFromHandlerTimestamp 36592071 Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@SleeperThreadEndTimestamp 36592071 Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelReturnSystemPowerState 36592521 Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@DeviceResumeTime 392 Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeCompleteTimestamp 0x83 0x94 0x35 0x02 ... Reg HKLM\SYSTEM\CurrentControlSet\Hardware Profiles\0001\System\CurrentControlSet\Enum\SCSI\Disk&Ven_TOSHIB_&Prod_MQ01ABD100\4&12248278&0&000000@StandardModeIdleImmediateCount 176 Reg HKLM\SYSTEM\CurrentControlSet\Services\Accelerometer\Statistics@ShocksDetected 454 Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\606dc7d979d2 Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch 5078 Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch 1611 Reg HKLM\SYSTEM\CurrentControlSet\Services\SynTP\Parameters@DetectTimeMS 371 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ec867241-6578-4be5-a28b-de6ea8e1d7df}@LeaseObtainedTime 1494029588 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ec867241-6578-4be5-a28b-de6ea8e1d7df}@T1 1494159188 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ec867241-6578-4be5-a28b-de6ea8e1d7df}@T2 1494256388 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ec867241-6578-4be5-a28b-de6ea8e1d7df}@LeaseTerminatesTime 1494288788 Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeEstimated 0x6C 0x0D 0x17 0xBF ... Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeHigh 0x6C 0x75 0xDB 0x20 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeLow 0x6C 0xA5 0x52 0x5D ... Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\62\0@Rw 0x64 0x62 0x03 0x00 ... Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\62\0@RwMask 0x64 0x62 0x03 0x00 ... Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\62\1@Rw 0x64 0x62 0x03 0x00 ... Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\62\1@RwMask 0x64 0x62 0x03 0x00 ... Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\62\2@Rw 0x64 0x62 0x03 0x00 ... Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\62\2@RwMask 0x64 0x62 0x03 0x00 ... Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search@JumpListChangedAppIds {1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\notepad.exe? ---- Disk sectors - GMER 2.2 ---- Disk \Device\Harddisk0\DR0 unknown MBR code ---- EOF - GMER 2.2 ----