Skocz do zawartości
Shagittar

Znikający Kursor

Przez Shagittar, w Klawiatury, Myszki, Kontrolery, Podkładki

Rekomendowane odpowiedzi

Shagittar Newbie

Shagittar

Opublikowano
Opublikowano

Witam mam problem po włączeniu losowego procesu kursor staje w miejscu i staje sie niewidzialny ... wklejam logi pomożcie

 

hijackthis]

Logfile of HijackThis v1.99.1

Scan saved at 08:38:21, on 2006-04-04

Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Mixer.exe

C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe

C:\WINDOWS\system32\rundll32.exe

C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Winamp\winampa.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE

C:\Program Files\Logitech\MouseWare\system\em_exec.exe

C:\Program Files\Sygate\SON\sgserv.exe

C:\Program Files\mIRC\mirc.exe

C:\Program Files\Tlen.pl\tlen.exe

C:\Program Files\Winamp\winamp.exe

C:\PROGRA~1\MOZILL~1\FIREFOX.EXE

E:\sh4gi\@INSTALKI\!@#Self#@!\logery\hijackthis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL (file missing)

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon

O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize

O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe

O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -onlytray

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O17 - HKLM\System\CCS\Services\Tcpip\..\{BAF64D0A-4D1D-4349-A691-418E236122A8}: NameServer = 195.116.168.2,194.204.152.34

O17 - HKLM\System\CCS\Services\Tcpip\..\{EF49B13D-B642-470A-B39A-8B1DC10A7EE0}: NameServer = 194.204.152.34 217.98.63.164

O18 - Protocol: wpmsg - {2E0AC5A0-3597-11D6-B3ED-0001021DC1C3} - C:\Program Files\Spik\url_wpmsg.dll

O20 - Winlogon Notify: WgaLogon - WgaLogon.dll (file missing)

O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: SyGateService (SaService) - Sygate technologies Inc. - C:\Program Files\Sygate\SON\sgserv.exe

 

________________________________________________________________________________

_________

 

[silent Runners]

"Silent Runners.vbs", revision 43, http://www.silentrunners.org/

Operating System: Windows XP SP2

Output limited to non-default values, except where indicated by "{++}"

 

 

Startup items buried in registry:

---------------------------------

 

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}

"C-Media Mixer" = "Mixer.exe /startup" ["C-Media Electronic Inc. (www.cmedia.com.tw)"]

"NvCplDaemon" = "RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup" [MS]

"nwiz" = "nwiz.exe /install" ["NVIDIA Corporation"]

"NvMediaCenter" = "RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit" [MS]

"SpeedTouch USB Diagnostics" = ""C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon" ["THOMSON Telecom Belgium"]

"KAVPersonal50" = "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize" ["Kaspersky Lab"]

"HPDJ Taskbar Utility" = "C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe" ["HP"]

"Logitech Utility" = "Logi_MwX.Exe" ["Logitech Inc."]

"NeroFilterCheck" = "C:\WINDOWS\system32\NeroCheck.exe" ["Ahead Software Gmbh"]

"BluetoothAuthenticationAgent" = "rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent" [MS]

"PCSuiteTrayApplication" = "C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -onlytray" ["Nokia"]

"SunJavaUpdateSched" = "C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe" ["Sun Microsystems, Inc."]

"WinampAgent" = "C:\Program Files\Winamp\winampa.exe" [null data]

 

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = "AcroIEHlprObj Class" [from CLSID]

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"]

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = "SSVHelper Class" [from CLSID]

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll" ["Sun Microsystems, Inc."]

 

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\

"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Rozszerzenie CPL kadrowania wyświetlania"

-> {CLSID}\InProcServer32\(Default) = "deskpan.dll" [file not found]

"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Rozszerzenie ikony HyperTerminalu"

-> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."]

"{A70C977A-BF00-412C-90B7-034C51DA2439}" = "NvCpl DesktopContext Class"

-> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\nvcpl.dll" ["NVIDIA Corporation"]

"{FFB699E0-306A-11d3-8BD1-00104B6F7516}" = "Play on my TV helper"

-> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\nvcpl.dll" ["NVIDIA Corporation"]

"{1CDB2949-8F65-4355-8456-263E7C208A5D}" = "Desktop Explorer"

-> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]

"{1E9B04FB-F9E5-4718-997B-B8DA88302A47}" = "Desktop Explorer Menu"

-> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]

"{1E9B04FB-F9E5-4718-997B-B8DA88302A48}" = "nView Desktop Context Menu"

-> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]

"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]

"{32020A01-506E-484D-A2A8-BE3CF17601C3}" = "AlcoholShellEx"

-> {CLSID}\InProcServer32\(Default) = "C:\PROGRA~1\ALCOHO~1\ALCOHO~1\AXShlEx.dll" ["Alcohol Soft Development Team"]

"{21569614-B795-46b1-85F4-E737A8DC09AD}" = "Shell Search Band"

-> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\system32\browseui.dll" [MS]

"{416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A}" = "PhoneBrowser"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll" ["Nokia"]

"{C0C4375A-5B72-4efe-929D-3B848C3A1E91}" = "Message View"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Nokia\Nokia PC Suite 6\MessageView.dll" ["Nokia"]

"{5E2121EE-0300-11D4-8D3B-444553540000}" = "SimpleShlExt extension"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Spik\shellext_wpmsg.dll" [file not found]

 

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\

INFECTION WARNING! WgaLogon\DLLName = "WgaLogon.dll" [file not found]

 

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\

Kaspersky Anti-Virus\(Default) = "{dd230880-495a-11d1-b064-008048ec2fc5}"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\shellex.dll" ["Kaspersky Lab"]

WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]

WPKontakt\(Default) = "{5E2121EE-0300-11D4-8D3B-444553540000}"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Spik\shellext_wpmsg.dll" [file not found]

 

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\

WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]

 

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\

Kaspersky Anti-Virus\(Default) = "{dd230880-495a-11d1-b064-008048ec2fc5}"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\shellex.dll" ["Kaspersky Lab"]

WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]

 

 

Active Desktop and Wallpaper:

-----------------------------

 

Active Desktop is disabled at this entry:

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

 

HKCU\Control Panel\Desktop\

"Wallpaper" = "C:\WINDOWS\ACD Wallpaper.bmp"

 

 

Enabled Screen Saver:

---------------------

 

HKCU\Control Panel\Desktop\

"SCRNSAVE.EXE" = "C:\WINDOWS\System32\logon.scr" [MS]

 

 

Startup items in "shagi" & "All Users" startup folders:

-------------------------------------------------------

 

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart

"Adobe Gamma Loader" -> shortcut to: "C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe" ["Adobe Systems, Inc."]

 

 

Winsock2 Service Provider DLLs:

-------------------------------

 

Namespace Service Providers

 

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}

000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]

000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]

000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]

000000000004\LibraryPath = "%SystemRoot%\system32\wshbth.dll" [MS]

 

Transport Service Providers

 

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}

0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:

%SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 20

%SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05

 

 

Toolbars, Explorer Bars, Extensions:

------------------------------------

 

Extensions (Tools menu items, main toolbar menu buttons)

 

HKLM\Software\Microsoft\Internet Explorer\Extensions\

{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\

"MenuText" = "Sun Java Console"

"CLSIDExtension" = "{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}"

-> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll" ["Sun Microsystems, Inc."]

 

{FB5F1910-F110-11D2-BB9E-00C04F795683}\

"ButtonText" = "Messenger"

"MenuText" = "Windows Messenger"

"Exec" = "C:\Program Files\Messenger\msmsgs.exe" [MS]

 

 

Miscellaneous IE Hijack Points

------------------------------

 

HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\

 

Missing lines (compared with English-language version):

"{08C06D61-F1F3-4799-86F8-BE1A89362C85}" = "Search Class" [from CLSID]

-> {CLSID}\InProcServer32\(Default) = "C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL" [file not found]

 

 

Running Services (Display Name, Service Name, Path {Service DLL}):

------------------------------------------------------------------

 

Bluetooth Support Service, BthServ, "C:\WINDOWS\system32\svchost.exe -k bthsvcs" {"C:\WINDOWS\System32\bthserv.dll" [MS]}

kavsvc, kavsvc, "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe" ["Kaspersky Lab"]

NVIDIA Display Driver Service, NVSvc, "C:\WINDOWS\system32\nvsvc32.exe" ["NVIDIA Corporation"]

SyGateService, SaService, "C:\Program Files\Sygate\SON\sgserv.exe" ["Sygate technologies Inc."]

 

 

Print Monitors:

---------------

 

HKLM\System\CurrentControlSet\Control\Print\Monitors\

hpzlnt06\Driver = "hpzlnt06.dll" ["HP"]

 

 

----------

+ This report excludes default entries except where indicated.

+ To see *everywhere* the script checks and *everything* it finds,

launch it from a command prompt or a shortcut with the -all parameter.

+ To search all directories of local fixed drives for DESKTOP.INI

DLL launch points and all Registry CLSIDs for dormant Explorer Bars,

use the -supp parameter or answer "No" at the first message box.

---------- (total run time: 43 seconds, including 7 seconds for message boxes)

 

________________________________________________________________________________

_________

 

GMER

---- System - GMER 1.0.6 ----

 

SSDT \SystemRoot\System32\drivers\klif.sys ZwClose

SSDT d347bus.sys ZwCreateKey

SSDT d347bus.sys ZwCreatePagingFile

SSDT \SystemRoot\System32\drivers\klif.sys ZwCreateProcess

SSDT \SystemRoot\System32\drivers\klif.sys ZwCreateProcessEx

SSDT \SystemRoot\System32\drivers\klif.sys ZwCreateSection

SSDT \SystemRoot\System32\drivers\klif.sys ZwCreateThread

SSDT d347bus.sys ZwEnumerateKey

SSDT d347bus.sys ZwEnumeratevaluateueKey

SSDT d347bus.sys ZwOpenKey

SSDT \SystemRoot\System32\drivers\klif.sys ZwOpenProcess

SSDT \SystemRoot\System32\drivers\klif.sys ZwQueryInformationFile

SSDT d347bus.sys ZwQueryKey

SSDT d347bus.sys ZwQueryValueKey

SSDT \SystemRoot\System32\drivers\klif.sys ZwSetInformationProcess

SSDT d347bus.sys ZwSetSystemPowerState

SSDT \SystemRoot\System32\drivers\klif.sys ZwTerminateProcess

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

SSDT \SystemRoot\System32\drivers\klif.sys (null)

 

INT 0x00 \WINDOWS\system32\ntoskrnl.exe 804DF350

INT 0x01 \WINDOWS\system32\ntoskrnl.exe 804DF4CB

INT 0x03 \WINDOWS\system32\ntoskrnl.exe 804DF89D

INT 0x04 \WINDOWS\system32\ntoskrnl.exe 804DFA20

INT 0x05 \WINDOWS\system32\ntoskrnl.exe 804DFB81

INT 0x06 \WINDOWS\system32\ntoskrnl.exe 804DFD02

INT 0x07 \WINDOWS\system32\ntoskrnl.exe 804E036A

INT 0x09 \WINDOWS\system32\ntoskrnl.exe 804E078F

INT 0x0A \WINDOWS\system32\ntoskrnl.exe 804E08AC

INT 0x0B \WINDOWS\system32\ntoskrnl.exe 804E09E9

INT 0x0C \WINDOWS\system32\ntoskrnl.exe 804E0C42

INT 0x0D \WINDOWS\system32\ntoskrnl.exe 804E0F38

INT 0x0E \WINDOWS\system32\ntoskrnl.exe 804E164F

INT 0x0F \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x10 \WINDOWS\system32\ntoskrnl.exe 804E1A99

INT 0x11 \WINDOWS\system32\ntoskrnl.exe 804E1BCE

INT 0x12 \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x13 \WINDOWS\system32\ntoskrnl.exe 804E1D34

INT 0x14 \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x15 \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x16 \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x17 \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x18 \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x19 \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x1A \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x1B \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x1C \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x1D \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x1E \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x1F \WINDOWS\system32\hal.dll 806EDFD0

INT 0x2A \WINDOWS\system32\ntoskrnl.exe 804DEB92

INT 0x2B \WINDOWS\system32\ntoskrnl.exe 804DEC95

INT 0x2C \WINDOWS\system32\ntoskrnl.exe 804DEE34

INT 0x2D \WINDOWS\system32\ntoskrnl.exe 804DF77C

INT 0x2E \WINDOWS\system32\ntoskrnl.exe 804DE631

INT 0x2F \WINDOWS\system32\ntoskrnl.exe 804E197C

INT 0x30 \WINDOWS\system32\ntoskrnl.exe 804DDCF0

INT 0x31 \WINDOWS\system32\ntoskrnl.exe 804DDCFA

INT 0x32 \WINDOWS\system32\ntoskrnl.exe 804DDD04

INT 0x33 \WINDOWS\system32\ntoskrnl.exe 804DDD0E

INT 0x34 \WINDOWS\system32\ntoskrnl.exe 804DDD18

INT 0x35 \WINDOWS\system32\ntoskrnl.exe 804DDD22

INT 0x36 \WINDOWS\system32\ntoskrnl.exe 804DDD2C

INT 0x37 \WINDOWS\system32\hal.dll 806ED728

INT 0x38 \WINDOWS\system32\ntoskrnl.exe 804DDD40

INT 0x39 \WINDOWS\system32\ntoskrnl.exe 804DDD4A

INT 0x3A \WINDOWS\system32\ntoskrnl.exe 804DDD54

INT 0x3B \WINDOWS\system32\ntoskrnl.exe 804DDD5E

INT 0x3C \WINDOWS\system32\ntoskrnl.exe 804DDD68

INT 0x3D \WINDOWS\system32\hal.dll 806EEB70

INT 0x3E \WINDOWS\system32\ntoskrnl.exe 804DDD7C

INT 0x3F \WINDOWS\system32\ntoskrnl.exe 804DDD86

INT 0x40 \WINDOWS\system32\ntoskrnl.exe 804DDD90

INT 0x41 \WINDOWS\system32\hal.dll 806EE9CC

INT 0x42 \WINDOWS\system32\ntoskrnl.exe 804DDDA4

INT 0x43 \WINDOWS\system32\ntoskrnl.exe 804DDDAE

INT 0x44 \WINDOWS\system32\ntoskrnl.exe 804DDDB8

INT 0x45 \WINDOWS\system32\ntoskrnl.exe 804DDDC2

INT 0x46 \WINDOWS\system32\ntoskrnl.exe 804DDDCC

INT 0x47 \WINDOWS\system32\ntoskrnl.exe 804DDDD6

INT 0x48 \WINDOWS\system32\ntoskrnl.exe 804DDDE0

INT 0x49 \WINDOWS\system32\ntoskrnl.exe 804DDDEA

INT 0x4A \WINDOWS\system32\ntoskrnl.exe 804DDDF4

INT 0x4B \WINDOWS\system32\ntoskrnl.exe 804DDDFE

INT 0x4C \WINDOWS\system32\ntoskrnl.exe 804DDE08

INT 0x4D \WINDOWS\system32\ntoskrnl.exe 804DDE12

INT 0x4E \WINDOWS\system32\ntoskrnl.exe 804DDE1C

INT 0x4F \WINDOWS\system32\ntoskrnl.exe 804DDE26

INT 0x50 \WINDOWS\system32\hal.dll 806ED800

INT 0x51 \WINDOWS\system32\ntoskrnl.exe 804DDE3A

INT 0x52 \WINDOWS\system32\ntoskrnl.exe 804DDE44

INT 0x53 \WINDOWS\system32\ntoskrnl.exe 804DDE4E

INT 0x54 \WINDOWS\system32\ntoskrnl.exe 804DDE58

INT 0x55 \WINDOWS\system32\ntoskrnl.exe 804DDE62

INT 0x56 \WINDOWS\system32\ntoskrnl.exe 804DDE6C

INT 0x57 \WINDOWS\system32\ntoskrnl.exe 804DDE76

INT 0x58 \WINDOWS\system32\ntoskrnl.exe 804DDE80

INT 0x59 \WINDOWS\system32\ntoskrnl.exe 804DDE8A

INT 0x5A \WINDOWS\system32\ntoskrnl.exe 804DDE94

INT 0x5B \WINDOWS\system32\ntoskrnl.exe 804DDE9E

INT 0x5C \WINDOWS\system32\ntoskrnl.exe 804DDEA8

INT 0x5D \WINDOWS\system32\ntoskrnl.exe 804DDEB2

INT 0x5E \WINDOWS\system32\ntoskrnl.exe 804DDEBC

INT 0x5F \WINDOWS\system32\ntoskrnl.exe 804DDEC6

INT 0x60 \WINDOWS\system32\ntoskrnl.exe 804DDED0

INT 0x61 \WINDOWS\system32\ntoskrnl.exe 804DDEDA

INT 0x64 \WINDOWS\system32\ntoskrnl.exe 804DDEF8

INT 0x65 \WINDOWS\system32\ntoskrnl.exe 804DDF02

INT 0x66 \WINDOWS\system32\ntoskrnl.exe 804DDF0C

INT 0x67 \WINDOWS\system32\ntoskrnl.exe 804DDF16

INT 0x68 \WINDOWS\system32\ntoskrnl.exe 804DDF20

INT 0x69 \WINDOWS\system32\ntoskrnl.exe 804DDF2A

INT 0x6A \WINDOWS\system32\ntoskrnl.exe 804DDF34

INT 0x6B \WINDOWS\system32\ntoskrnl.exe 804DDF3E

INT 0x6C \WINDOWS\system32\ntoskrnl.exe 804DDF48

INT 0x6D \WINDOWS\system32\ntoskrnl.exe 804DDF52

INT 0x6E \WINDOWS\system32\ntoskrnl.exe 804DDF5C

INT 0x6F \WINDOWS\system32\ntoskrnl.exe 804DDF66

INT 0x70 \WINDOWS\system32\ntoskrnl.exe 804DDF70

INT 0x71 \WINDOWS\system32\ntoskrnl.exe 804DDF7A

INT 0x72 \WINDOWS\system32\ntoskrnl.exe 804DDF84

INT 0x74 \WINDOWS\system32\ntoskrnl.exe 804DDF98

INT 0x75 \WINDOWS\system32\ntoskrnl.exe 804DDFA2

INT 0x76 \WINDOWS\system32\ntoskrnl.exe 804DDFAC

INT 0x77 \WINDOWS\system32\ntoskrnl.exe 804DDFB6

INT 0x78 \WINDOWS\system32\ntoskrnl.exe 804DDFC0

INT 0x79 \WINDOWS\system32\ntoskrnl.exe 804DDFCA

INT 0x7A \WINDOWS\system32\ntoskrnl.exe 804DDFD4

INT 0x7B \WINDOWS\system32\ntoskrnl.exe 804DDFDE

INT 0x7C \WINDOWS\system32\ntoskrnl.exe 804DDFE8

INT 0x7D \WINDOWS\system32\ntoskrnl.exe 804DDFF2

INT 0x7E \WINDOWS\system32\ntoskrnl.exe 804DDFFC

INT 0x7F \WINDOWS\system32\ntoskrnl.exe 804DE006

INT 0x80 \WINDOWS\system32\ntoskrnl.exe 804DE010

INT 0x81 \WINDOWS\system32\ntoskrnl.exe 804DE01A

INT 0x84 \WINDOWS\system32\ntoskrnl.exe 804DE038

INT 0x85 \WINDOWS\system32\ntoskrnl.exe 804DE042

INT 0x86 \WINDOWS\system32\ntoskrnl.exe 804DE04C

INT 0x87 \WINDOWS\system32\ntoskrnl.exe 804DE056

INT 0x88 \WINDOWS\system32\ntoskrnl.exe 804DE060

INT 0x89 \WINDOWS\system32\ntoskrnl.exe 804DE06A

INT 0x8A \WINDOWS\system32\ntoskrnl.exe 804DE074

INT 0x8B \WINDOWS\system32\ntoskrnl.exe 804DE07E

INT 0x8C \WINDOWS\system32\ntoskrnl.exe 804DE088

INT 0x8D \WINDOWS\system32\ntoskrnl.exe 804DE092

INT 0x8E \WINDOWS\system32\ntoskrnl.exe 804DE09C

INT 0x8F \WINDOWS\system32\ntoskrnl.exe 804DE0A6

INT 0x90 \WINDOWS\system32\ntoskrnl.exe 804DE0B0

INT 0x91 \WINDOWS\system32\ntoskrnl.exe 804DE0BA

INT 0x94 \WINDOWS\system32\ntoskrnl.exe 804DE0D8

INT 0x95 \WINDOWS\system32\ntoskrnl.exe 804DE0E2

INT 0x96 \WINDOWS\system32\ntoskrnl.exe 804DE0EC

INT 0x97 \WINDOWS\system32\ntoskrnl.exe 804DE0F6

INT 0x98 \WINDOWS\system32\ntoskrnl.exe 804DE100

INT 0x99 \WINDOWS\system32\ntoskrnl.exe 804DE10A

INT 0x9A \WINDOWS\system32\ntoskrnl.exe 804DE114

INT 0x9B \WINDOWS\system32\ntoskrnl.exe 804DE11E

INT 0x9C \WINDOWS\system32\ntoskrnl.exe 804DE128

INT 0x9D \WINDOWS\system32\ntoskrnl.exe 804DE132

INT 0x9E \WINDOWS\system32\ntoskrnl.exe 804DE13C

INT 0x9F \WINDOWS\system32\ntoskrnl.exe 804DE146

INT 0xA0 \WINDOWS\system32\ntoskrnl.exe 804DE150

INT 0xA1 \WINDOWS\system32\ntoskrnl.exe 804DE15A

INT 0xA2 \WINDOWS\system32\ntoskrnl.exe 804DE164

INT 0xA3 \WINDOWS\system32\ntoskrnl.exe 804DE16E

INT 0xA4 \WINDOWS\system32\ntoskrnl.exe 804DE178

INT 0xA5 \WINDOWS\system32\ntoskrnl.exe 804DE182

INT 0xA6 \WINDOWS\system32\ntoskrnl.exe 804DE18C

INT 0xA7 \WINDOWS\system32\ntoskrnl.exe 804DE196

INT 0xA8 \WINDOWS\system32\ntoskrnl.exe 804DE1A0

INT 0xA9 \WINDOWS\system32\ntoskrnl.exe 804DE1AA

INT 0xAA \WINDOWS\system32\ntoskrnl.exe 804DE1B4

INT 0xAB \WINDOWS\system32\ntoskrnl.exe 804DE1BE

INT 0xAC \WINDOWS\system32\ntoskrnl.exe 804DE1C8

INT 0xAD \WINDOWS\system32\ntoskrnl.exe 804DE1D2

INT 0xAE \WINDOWS\system32\ntoskrnl.exe 804DE1DC

INT 0xAF \WINDOWS\system32\ntoskrnl.exe 804DE1E6

INT 0xB0 \WINDOWS\system32\ntoskrnl.exe 804DE1F0

INT 0xB3 \WINDOWS\system32\ntoskrnl.exe 804DE20E

INT 0xB5 \WINDOWS\system32\ntoskrnl.exe 804DE222

INT 0xB6 \WINDOWS\system32\ntoskrnl.exe 804DE22C

INT 0xB7 \WINDOWS\system32\ntoskrnl.exe 804DE236

INT 0xB8 \WINDOWS\system32\ntoskrnl.exe 804DE240

INT 0xB9 \WINDOWS\system32\ntoskrnl.exe 804DE24A

INT 0xBA \WINDOWS\system32\ntoskrnl.exe 804DE254

INT 0xBB \WINDOWS\system32\ntoskrnl.exe 804DE25E

INT 0xBC \WINDOWS\system32\ntoskrnl.exe 804DE268

INT 0xBD \WINDOWS\system32\ntoskrnl.exe 804DE272

INT 0xBE \WINDOWS\system32\ntoskrnl.exe 804DE27C

INT 0xBF \WINDOWS\system32\ntoskrnl.exe 804DE286

INT 0xC0 \WINDOWS\system32\ntoskrnl.exe 804DE290

INT 0xC1 \WINDOWS\system32\hal.dll 806ED984

INT 0xC2 \WINDOWS\system32\ntoskrnl.exe 804DE2A4

INT 0xC3 \WINDOWS\system32\ntoskrnl.exe 804DE2AE

INT 0xC4 \WINDOWS\system32\ntoskrnl.exe 804DE2B8

INT 0xC5 \WINDOWS\system32\ntoskrnl.exe 804DE2C2

INT 0xC6 \WINDOWS\system32\ntoskrnl.exe 804DE2CC

INT 0xC7 \WINDOWS\system32\ntoskrnl.exe 804DE2D6

INT 0xC8 \WINDOWS\system32\ntoskrnl.exe 804DE2E0

INT 0xC9 \WINDOWS\system32\ntoskrnl.exe 804DE2EA

INT 0xCA \WINDOWS\system32\ntoskrnl.exe 804DE2F4

INT 0xCB \WINDOWS\system32\ntoskrnl.exe 804DE2FE

INT 0xCC \WINDOWS\system32\ntoskrnl.exe 804DE308

INT 0xCD \WINDOWS\system32\ntoskrnl.exe 804DE312

INT 0xCE \WINDOWS\system32\ntoskrnl.exe 804DE31C

INT 0xCF \WINDOWS\system32\ntoskrnl.exe 804DE326

INT 0xD0 \WINDOWS\system32\ntoskrnl.exe 804DE330

INT 0xD1 \WINDOWS\system32\hal.dll 806ECD34

INT 0xD2 \WINDOWS\system32\ntoskrnl.exe 804DE344

INT 0xD3 \WINDOWS\system32\ntoskrnl.exe 804DE34E

INT 0xD4 \WINDOWS\system32\ntoskrnl.exe 804DE358

INT 0xD5 \WINDOWS\system32\ntoskrnl.exe 804DE362

INT 0xD6 \WINDOWS\system32\ntoskrnl.exe 804DE36C

INT 0xD7 \WINDOWS\system32\ntoskrnl.exe 804DE376

INT 0xD8 \WINDOWS\system32\ntoskrnl.exe 804DE380

INT 0xD9 \WINDOWS\system32\ntoskrnl.exe 804DE38A

INT 0xDA \WINDOWS\system32\ntoskrnl.exe 804DE394

INT 0xDB \WINDOWS\system32\ntoskrnl.exe 804DE39E

INT 0xDC \WINDOWS\system32\ntoskrnl.exe 804DE3A8

INT 0xDD \WINDOWS\system32\ntoskrnl.exe 804DE3B2

INT 0xDE \WINDOWS\system32\ntoskrnl.exe 804DE3BC

INT 0xDF \WINDOWS\system32\ntoskrnl.exe 804DE3C6

INT 0xE0 \WINDOWS\system32\ntoskrnl.exe 804DE3D0

INT 0xE1 \WINDOWS\system32\hal.dll 806EDF0C

INT 0xE2 \WINDOWS\system32\ntoskrnl.exe 804DE3E4

INT 0xE3 \WINDOWS\system32\hal.dll 806EDC70

INT 0xE4 \WINDOWS\system32\ntoskrnl.exe 804DE3F8

INT 0xE5 \WINDOWS\system32\ntoskrnl.exe 804DE402

INT 0xE6 \WINDOWS\system32\ntoskrnl.exe 804DE40C

INT 0xE7 \WINDOWS\system32\ntoskrnl.exe 804DE416

INT 0xE8 \WINDOWS\system32\ntoskrnl.exe 804DE420

INT 0xE9 \WINDOWS\system32\ntoskrnl.exe 804DE42A

INT 0xEA \WINDOWS\system32\ntoskrnl.exe 804DE434

INT 0xEB \WINDOWS\system32\ntoskrnl.exe 804DE43E

INT 0xEC \WINDOWS\system32\ntoskrnl.exe 804DE448

INT 0xED \WINDOWS\system32\ntoskrnl.exe 804DE452

INT 0xEE \WINDOWS\system32\ntoskrnl.exe 804DE459

INT 0xEF \WINDOWS\system32\ntoskrnl.exe 804DE460

INT 0xF0 \WINDOWS\system32\ntoskrnl.exe 804DE467

INT 0xF1 \WINDOWS\system32\ntoskrnl.exe 804DE46E

INT 0xF2 \WINDOWS\system32\ntoskrnl.exe 804DE475

INT 0xF3 \WINDOWS\system32\ntoskrnl.exe 804DE47C

INT 0xF4 \WINDOWS\system32\ntoskrnl.exe 804DE483

INT 0xF5 \WINDOWS\system32\ntoskrnl.exe 804DE48A

INT 0xF6 \WINDOWS\system32\ntoskrnl.exe 804DE491

INT 0xF7 \WINDOWS\system32\ntoskrnl.exe 804DE498

INT 0xF8 \WINDOWS\system32\ntoskrnl.exe 804DE49F

INT 0xF9 \WINDOWS\system32\ntoskrnl.exe 804DE4A6

INT 0xFA \WINDOWS\system32\ntoskrnl.exe 804DE4AD

INT 0xFB \WINDOWS\system32\ntoskrnl.exe 804DE4B4

INT 0xFC \WINDOWS\system32\ntoskrnl.exe 804DE4BB

INT 0xFD \WINDOWS\system32\hal.dll 806EE464

INT 0xFE \WINDOWS\system32\hal.dll 806EE604

INT 0xFF \WINDOWS\system32\ntoskrnl.exe 804DE4D0

 

SYSENTER \WINDOWS\system32\ntoskrnl.exe 804DE6F0

 

---- Devices - GMER 1.0.6 ----

 

Device \FileSystem\Ntfs IRP_MJ_CREATE Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_CREATE_NAMED_PIPE ntoskrnl.exe

Device \FileSystem\Ntfs IRP_MJ_CLOSEIRP_MJ_READ Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_WRITE 82F64260

Device \FileSystem\Ntfs IRP_MJ_QUERY_INFORMATION Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_SET_INFORMATION Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_QUERY_EA Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_SET_EA Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_FLUSH_BUFFERS Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_QUERY_VOLUME_INFORMATION Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_SET_VOLUME_INFORMATION Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_DIRECTORY_CONTROL Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_FILE_SYSTEM_CONTROL Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_DEVICE_CONTROL Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_INTERNAL_DEVICE_CONTROL Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_SHUTDOWN ntoskrnl.exe

Device \FileSystem\Ntfs IRP_MJ_LOCK_CONTROL Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_CLEANUP Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_CREATE_MAILSLOT Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_QUERY_SECURITY ntoskrnl.exe

Device \FileSystem\Ntfs IRP_MJ_SET_SECURITY Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_POWER Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_SYSTEM_CONTROL ntoskrnl.exe

Device \FileSystem\Ntfs IRP_MJ_DEVICE_CHANGE ntoskrnl.exe

Device \FileSystem\Ntfs IRP_MJ_QUERY_QUOTA ntoskrnl.exe

Device \FileSystem\Ntfs IRP_MJ_SET_QUOTA Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_PNP Ntfs.sys

Device \FileSystem\Ntfs IRP_MJ_PNP_POWER Ntfs.sys

Device \FileSystem\Mup IRP_MJ_CREATE Mup.sys

Device \FileSystem\Mup IRP_MJ_CREATE_NAMED_PIPE Mup.sys

Device \FileSystem\Mup IRP_MJ_CLOSEIRP_MJ_READ Mup.sys

Device \FileSystem\Mup IRP_MJ_WRITE Mup.sys

Device \FileSystem\Mup IRP_MJ_QUERY_INFORMATION Mup.sys

Device \FileSystem\Mup IRP_MJ_SET_INFORMATION Mup.sys

Device \FileSystem\Mup IRP_MJ_QUERY_EA Mup.sys

Device \FileSystem\Mup IRP_MJ_SET_EA Mup.sys

Device \FileSystem\Mup IRP_MJ_FLUSH_BUFFERS Mup.sys

Device \FileSystem\Mup IRP_MJ_QUERY_VOLUME_INFORMATION Mup.sys

Device \FileSystem\Mup IRP_MJ_SET_VOLUME_INFORMATION Mup.sys

Device \FileSystem\Mup IRP_MJ_DIRECTORY_CONTROL Mup.sys

Device \FileSystem\Mup IRP_MJ_FILE_SYSTEM_CONTROL Mup.sys

Device \FileSystem\Mup IRP_MJ_DEVICE_CONTROL Mup.sys

Device \FileSystem\Mup IRP_MJ_INTERNAL_DEVICE_CONTROL Mup.sys

Device \FileSystem\Mup IRP_MJ_SHUTDOWN Mup.sys

Device \FileSystem\Mup IRP_MJ_LOCK_CONTROL Mup.sys

Device \FileSystem\Mup IRP_MJ_CLEANUP Mup.sys

Device \FileSystem\Mup IRP_MJ_CREATE_MAILSLOT Mup.sys

Device \FileSystem\Mup IRP_MJ_QUERY_SECURITY Mup.sys

Device \FileSystem\Mup IRP_MJ_SET_SECURITY Mup.sys

Device \FileSystem\Mup IRP_MJ_POWER Mup.sys

Device \FileSystem\Mup IRP_MJ_SYSTEM_CONTROL Mup.sys

Device \FileSystem\Mup IRP_MJ_DEVICE_CHANGE Mup.sys

Device \FileSystem\Mup IRP_MJ_QUERY_QUOTA Mup.sys

Device \FileSystem\Mup IRP_MJ_SET_QUOTA Mup.sys

Device \FileSystem\Mup IRP_MJ_PNP Mup.sys

Device \FileSystem\Mup IRP_MJ_PNP_POWER Mup.sys

Device \Driver\KSecDD IRP_MJ_CREATE KSecDD.sys

Device \Driver\KSecDD IRP_MJ_CREATE_NAMED_PIPE ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_CLOSEIRP_MJ_READ KSecDD.sys

Device \Driver\KSecDD IRP_MJ_WRITE KSecDD.sys

Device \Driver\KSecDD IRP_MJ_QUERY_INFORMATION KSecDD.sys

Device \Driver\KSecDD IRP_MJ_SET_INFORMATION KSecDD.sys

Device \Driver\KSecDD IRP_MJ_QUERY_EA ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_SET_EA ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_FLUSH_BUFFERS ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_QUERY_VOLUME_INFORMATION ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_SET_VOLUME_INFORMATION KSecDD.sys

Device \Driver\KSecDD IRP_MJ_DIRECTORY_CONTROL ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_FILE_SYSTEM_CONTROL ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_DEVICE_CONTROL ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_INTERNAL_DEVICE_CONTROL KSecDD.sys

Device \Driver\KSecDD IRP_MJ_SHUTDOWN ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_LOCK_CONTROL ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_CLEANUP ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_CREATE_MAILSLOT ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_QUERY_SECURITY ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_SET_SECURITY ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_POWER ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_SYSTEM_CONTROL ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_DEVICE_CHANGE ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_QUERY_QUOTA ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_SET_QUOTA ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_PNP ntoskrnl.exe

Device \Driver\KSecDD IRP_MJ_PNP_POWER ntoskrnl.exe

Device \Device\00000019

Device \Device\00000025

Device \Device\00000032

Device \Driver\Beep IRP_MJ_CREATE Beep.SYS

Device \Driver\Beep IRP_MJ_CREATE_NAMED_PIPE ntoskrnl.exe

Device \Driver\Beep IRP_MJ_CLOSEIRP_MJ_READ Beep.SYS

Device \Driver\Beep IRP_MJ_WRITE ntoskrnl.exe

Device \Driver\Beep IRP_MJ_QUERY_INFORMATION ntoskrnl.exe

Device \Driver\Beep IRP_MJ_SET_INFORMATION ntoskrnl.exe

Device \Driver\Beep IRP_MJ_QUERY_EA ntoskrnl.exe

Device \Driver\Beep IRP_MJ_SET_EA ntoskrnl.exe

Device \Driver\Beep IRP_MJ_FLUSH_BUFFERS ntoskrnl.exe

Device \Driver\Beep IRP_MJ_QUERY_VOLUME_INFORMATION ntoskrnl.exe

Device \Driver\Beep IRP_MJ_SET_VOLUME_INFORMATION ntoskrnl.exe

Device \Driver\Beep IRP_MJ_DIRECTORY_CONTROL ntoskrnl.exe

Device \Driver\Beep IRP_MJ_FILE_SYSTEM_CONTROL ntoskrnl.exe

Device \Driver\Beep IRP_MJ_DEVICE_CONTROL ntoskrnl.exe

Device \Driver\Beep IRP_MJ_INTERNAL_DEVICE_CONTROL Beep.SYS

Device \Driver\Beep IRP_MJ_SHUTDOWN ntoskrnl.exe

Device \Driver\Beep IRP_MJ_LOCK_CONTROL ntoskrnl.exe

Device \Driver\Beep IRP_MJ_CLEANUP ntoskrnl.exe

Device \Driver\Beep IRP_MJ_CREATE_MAILSLOT Beep.SYS

Device \Driver\Beep IRP_MJ_QUERY_SECURITY ntoskrnl.exe

Device \Driver\Beep IRP_MJ_SET_SECURITY ntoskrnl.exe

Device \Driver\Beep IRP_MJ_POWER ntoskrnl.exe

Device \Driver\Beep IRP_MJ_SYSTEM_CONTROL ntoskrnl.exe

Device \Driver\Beep IRP_MJ_DEVICE_CHANGE ntoskrnl.exe

Device \Driver\Beep IRP_MJ_QUERY_QUOTA ntoskrnl.exe

Device \Driver\Beep IRP_MJ_SET_QUOTA ntoskrnl.exe

Device \Driver\Beep IRP_MJ_PNP ntoskrnl.exe

Device \Driver\Beep IRP_MJ_PNP_POWER ntoskrnl.exe

Device \Driver\Klmc IRP_MJ_CREATE klmc.sys

Device \Driver\Klmc IRP_MJ_CREATE_NAMED_PIPE klmc.sys

Device \Driver\Klmc IRP_MJ_CLOSEIRP_MJ_READ klmc.sys

Device \Driver\Klmc IRP_MJ_WRITE klmc.sys

Device \Driver\Klmc IRP_MJ_QUERY_INFORMATION klmc.sys

Device \Driver\Klmc IRP_MJ_SET_INFORMATION klmc.sys

Device \Driver\Klmc IRP_MJ_QUERY_EA klmc.sys

Device \Driver\Klmc IRP_MJ_SET_EA klmc.sys

Device \Driver\Klmc IRP_MJ_FLUSH_BUFFERS klmc.sys

Device \Driver\Klmc IRP_MJ_QUERY_VOLUME_INFORMATION klmc.sys

Device \Driver\Klmc IRP_MJ_SET_VOLUME_INFORMATION klmc.sys

Device \Driver\Klmc IRP_MJ_DIRECTORY_CONTROL klmc.sys

Device \Driver\Klmc IRP_MJ_FILE_SYSTEM_CONTROL klmc.sys

Device \Driver\Klmc IRP_MJ_DEVICE_CONTROL klmc.sys

Device \Driver\Klmc IRP_MJ_INTERNAL_DEVICE_CONTROL klmc.sys

Device \Driver\Klmc IRP_MJ_SHUTDOWN klmc.sys

Device \Driver\Klmc IRP_MJ_LOCK_CONTROL klmc.sys

Device \Driver\Klmc IRP_MJ_CLEANUP klmc.sys

Device \Driver\Klmc IRP_MJ_CREATE_MAILSLOT klmc.sys

Device \Driver\Klmc IRP_MJ_QUERY_SECURITY klmc.sys

Device \Driver\Klmc IRP_MJ_SET_SECURITY klmc.sys

Device \Driver\Klmc IRP_MJ_POWER klmc.sys

Device \Driver\Klmc IRP_MJ_SYSTEM_CONTROL klmc.sys

Device \Driver\Klmc IRP_MJ_DEVICE_CHANGE klmc.sys

Device \Driver\Klmc IRP_MJ_QUERY_QUOTA klmc.sys

Device \Driver\Klmc IRP_MJ_SET_QUOTA klmc.sys

Device \Driver\Klmc IRP_MJ_PNP klmc.sys

Device \Driver\Klmc IRP_MJ_PNP_POWER ntoskrnl.exe

Device \Driver\NDIS IRP_MJ_CREATE NDIS.sys

Device \Driver\NDIS IRP_MJ_CREATE_NAMED_PIPE NDIS.sys

Device \Driver\NDIS IRP_MJ_CLOSEIRP_MJ_READ NDIS.sys

Device \Driver\NDIS IRP_MJ_WRITE NDIS.sys

Device \Driver\NDIS IRP_MJ_QUERY_INFORMATION NDIS.sys

Device \Driver\NDIS IRP_MJ_SET_INFORMATION NDIS.sys

Device \Driver\NDIS IRP_MJ_QUERY_EA NDIS.sys

Device \Driver\NDIS IRP_MJ_SET_EA NDIS.sys

Device \Driver\NDIS IRP_MJ_FLUSH_BUFFERS NDIS.sys

Device \Driver\NDIS IRP_MJ_QUERY_VOLUME_INFORMATION NDIS.sys

Device \Driver\NDIS IRP_MJ_SET_VOLUME_INFORMATION NDIS.sys

Device \Driver\NDIS IRP_MJ_DIRECTORY_CONTROL NDIS.sys

Device \Driver\NDIS IRP_MJ_FILE_SYSTEM_CONTROL NDIS.sys

Device \Driver\NDIS IRP_MJ_DEVICE_CONTROL NDIS.sys

Device \Driver\NDIS IRP_MJ_INTERNAL_DEVICE_CONTROL NDIS.sys

Device \Driver\NDIS IRP_MJ_SHUTDOWN NDIS.sys

Device \Driver\NDIS IRP_MJ_LOCK_CONTROL NDIS.sys

Device \Driver\NDIS IRP_MJ_CLEANUP NDIS.sys

Device \Driver\NDIS IRP_MJ_CREATE_MAILSLOT NDIS.sys

Device \Driver\NDIS IRP_MJ_QUERY_SECURITY NDIS.sys

Device \Driver\NDIS IRP_MJ_SET_SECURITY NDIS.sys

Device \Driver\NDIS IRP_MJ_POWER NDIS.sys

Device \Driver\NDIS IRP_MJ_SYSTEM_CONTROL NDIS.sys

Device \Driver\NDIS IRP_MJ_DEVICE_CHANGE NDIS.sys

Device \Driver\NDIS IRP_MJ_QUERY_QUOTA NDIS.sys

Device \Driver\NDIS IRP_MJ_SET_QUOTA NDIS.sys

Device \Driver\NDIS IRP_MJ_PNP NDIS.sys

Device \Driver\NDIS IRP_MJ_PNP_POWER NDIS.sys

Device \Device\00000026

Device \Device\00000033

Device \Device\{3EAC9D25-6D65-482A-89DC-48C1FDCA6091}

Device \FileSystem\NetBIOS IRP_MJ_CREATE netbios.sys

Device \FileSystem\NetBIOS IRP_MJ_CREATE_NAMED_PIPE ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_CLOSEIRP_MJ_READ netbios.sys

Device \FileSystem\NetBIOS IRP_MJ_WRITE ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_QUERY_INFORMATION ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_SET_INFORMATION ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_QUERY_EA ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_SET_EA ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_FLUSH_BUFFERS ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_QUERY_VOLUME_INFORMATION ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_SET_VOLUME_INFORMATION ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_DIRECTORY_CONTROL ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_FILE_SYSTEM_CONTROL ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_DEVICE_CONTROL ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_INTERNAL_DEVICE_CONTROL netbios.sys

Device \FileSystem\NetBIOS IRP_MJ_SHUTDOWN ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_LOCK_CONTROL ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_CLEANUP ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_CREATE_MAILSLOT netbios.sys

Device \FileSystem\NetBIOS IRP_MJ_QUERY_SECURITY ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_SET_SECURITY ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_POWER ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_SYSTEM_CONTROL ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_DEVICE_CHANGE ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_QUERY_QUOTA ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_SET_QUOTA ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_PNP ntoskrnl.exe

Device \FileSystem\NetBIOS IRP_MJ_PNP_POWER ntoskrnl.exe

Device \Driver\PSched IRP_MJ_CREATE NDIS.sys

Device \Driver\PSched IRP_MJ_CREATE_NAMED_PIPE NDIS.sys

Device \Driver\PSched IRP_MJ_CLOSEIRP_MJ_READ NDIS.sys

Device \Driver\PSched IRP_MJ_WRITE NDIS.sys

Device \Driver\PSched IRP_MJ_QUERY_INFORMATION NDIS.sys

Device \Driver\PSched IRP_MJ_SET_INFORMATION NDIS.sys

Device \Driver\PSched IRP_MJ_QUERY_EA NDIS.sys

Device \Driver\PSched IRP_MJ_SET_EA NDIS.sys

Device \Driver\PSched IRP_MJ_FLUSH_BUFFERS NDIS.sys

Device \Driver\PSched IRP_MJ_QUERY_VOLUME_INFORMATION NDIS.sys

Device \Driver\PSched IRP_MJ_SET_VOLUME_INFORMATION NDIS.sys

Device \Driver\PSched IRP_MJ_DIRECTORY_CONTROL NDIS.sys

Device \Driver\PSched IRP_MJ_FILE_SYSTEM_CONTROL NDIS.sys

Device \Driver\PSched IRP_MJ_DEVICE_CONTROL NDIS.sys

Device \Driver\PSched IRP_MJ_INTERNAL_DEVICE_CONTROL NDIS.sys

Device \Driver\PSched IRP_MJ_SHUTDOWN NDIS.sys

Device \Driver\PSched IRP_MJ_LOCK_CONTROL NDIS.sys

Device \Driver\PSched IRP_MJ_CLEANUP NDIS.sys

Device \Driver\PSched IRP_MJ_CREATE_MAILSLOT NDIS.sys

Device \Driver\PSched IRP_MJ_QUERY_SECURITY NDIS.sys

Device \Driver\PSched IRP_MJ_SET_SECURITY NDIS.sys

Device \Driver\PSched IRP_MJ_POWER NDIS.sys

Device \Driver\PSched IRP_MJ_SYSTEM_CONTROL NDIS.sys

Device \Driver\PSched IRP_MJ_DEVICE_CHANGE NDIS.sys

Device \Driver\PSched IRP_MJ_QUERY_QUOTA NDIS.sys

Device \Driver\PSched IRP_MJ_SET_QUOTA NDIS.sys

Device \Driver\PSched IRP_MJ_PNP NDIS.sys

Device \Driver\PSched IRP_MJ_PNP_POWER NDIS.sys

Device \Driver\alcan5wn IRP_MJ_CREATE NDIS.sys

Device \Driver\alcan5wn IRP_MJ_CREATE_NAMED_PIPE NDIS.sys

Device \Driver\alcan5wn IRP_MJ_CLOSEIRP_MJ_READ NDIS.sys

Device \Driver\alcan5wn IRP_MJ_WRITE NDIS.sys

Device \Driver\alcan5wn IRP_MJ_QUERY_INFORMATION NDIS.sys

Device \Driver\alcan5wn IRP_MJ_SET_INFORMATION NDIS.sys

Device \Driver\alcan5wn IRP_MJ_QUERY_EA NDIS.sys

Device \Driver\alcan5wn IRP_MJ_SET_EA NDIS.sys

Device \Driver\alcan5wn IRP_MJ_FLUSH_BUFFERS NDIS.sys

Device \Driver\alcan5wn IRP_MJ_QUERY_VOLUME_INFORMATION NDIS.sys

Device \Driver\alcan5wn IRP_MJ_SET_VOLUME_INFORMATION NDIS.sys

Device \Driver\alcan5wn IRP_MJ_DIRECTORY_CONTROL NDIS.sys

Device \Driver\alcan5wn IRP_MJ_FILE_SYSTEM_CONTROL NDIS.sys

Device \Driver\alcan5wn IRP_MJ_DEVICE_CONTROL NDIS.sys

Device \Driver\alcan5wn IRP_MJ_INTERNAL_DEVICE_CONTROL NDIS.sys

Device \Driver\alcan5wn IRP_MJ_SHUTDOWN NDIS.sys

Device \Driver\alcan5wn IRP_MJ_LOCK_CONTROL NDIS.sys

Device \Driver\alcan5wn IRP_MJ_CLEANUP NDIS.sys

Device \Driver\alcan5wn IRP_MJ_CREATE_MAILSLOT NDIS.sys

Device \Driver\alcan5wn IRP_MJ_QUERY_SECURITY NDIS.sys

Device \Driver\alcan5wn IRP_MJ_SET_SECURITY NDIS.sys

Device \Driver\alcan5wn IRP_MJ_POWER NDIS.sys

Device \Driver\alcan5wn IRP_MJ_SYSTEM_CONTROL NDIS.sys

Device \Driver\alcan5wn IRP_MJ_DEVICE_CHANGE NDIS.sys

Device \Driver\alcan5wn IRP_MJ_QUERY_QUOTA NDIS.sys

Device \Driver\alcan5wn IRP_MJ_SET_QUOTA NDIS.sys

Device \Driver\alcan5wn IRP_MJ_PNP NDIS.sys

Device \Driver\alcan5wn IRP_MJ_PNP_POWER NDIS.sys

Device \Device\00000027

Device \Device\00000034

Device \Driver\TermDD IRP_MJ_CREATE termdd.sys

Device \Driver\TermDD IRP_MJ_CREATE_NAMED_PIPE termdd.sys

Device \Driver\TermDD IRP_MJ_CLOSEIRP_MJ_READ termdd.sys

Device \Driver\TermDD IRP_MJ_WRITE termdd.sys

Device \Driver\TermDD IRP_MJ_QUERY_INFORMATION termdd.sys

Device \Driver\TermDD IRP_MJ_SET_INFORMATION termdd.sys

Device \Driver\TermDD IRP_MJ_QUERY_EA termdd.sys

Device \Driver\TermDD IRP_MJ_SET_EA termdd.sys

Device \Driver\TermDD IRP_MJ_FLUSH_BUFFERS termdd.sys

Device \Driver\TermDD IRP_MJ_QUERY_VOLUME_INFORMATION termdd.sys

Device \Driver\TermDD IRP_MJ_SET_VOLUME_INFORMATION termdd.sys

Device \Driver\TermDD IRP_MJ_DIRECTORY_CONTROL termdd.sys

Device \Driver\TermDD IRP_MJ_FILE_SYSTEM_CONTROL termdd.sys

Device \Driver\TermDD IRP_MJ_DEVICE_CONTROL termdd.sys

Device \Driver\TermDD IRP_MJ_INTERNAL_DEVICE_CONTROL termdd.sys

Device \Driver\TermDD IRP_MJ_SHUTDOWN termdd.sys

Device \Driver\TermDD IRP_MJ_LOCK_CONTROL termdd.sys

Device \Driver\TermDD IRP_MJ_CLEANUP termdd.sys

Device \Driver\TermDD IRP_MJ_CREATE_MAILSLOT termdd.sys

Device \Driver\TermDD IRP_MJ_QUERY_SECURITY termdd.sys

Device \Driver\TermDD IRP_MJ_SET_SECURITY termdd.sys

Device \Driver\TermDD IRP_MJ_POWER termdd.sys

Device \Driver\TermDD IRP_MJ_SYSTEM_CONTROL termdd.sys

Device \Driver\TermDD IRP_MJ_DEVICE_CHANGE termdd.sys

Device \Driver\TermDD IRP_MJ_QUERY_QUOTA termdd.sys

Device \Driver\TermDD IRP_MJ_SET_QUOTA termdd.sys

Device \Driver\TermDD IRP_MJ_PNP termdd.sys

Device \Driver\TermDD IRP_MJ_PNP_POWER termdd.sys

Device \Driver\Klif IRP_MJ_CREATE klif.sys

Device \Driver\Klif IRP_MJ_CREATE_NAMED_PIPE klif.sys

Device \Driver\Klif IRP_MJ_CLOSEIRP_MJ_READ klif.sys

Device \Driver\Klif IRP_MJ_WRITE klif.sys

Device \Driver\Klif IRP_MJ_QUERY_INFORMATION klif.sys

Device \Driver\Klif IRP_MJ_SET_INFORMATION klif.sys

Device \Driver\Klif IRP_MJ_QUERY_EA klif.sys

Device \Driver\Klif IRP_MJ_SET_EA klif.sys

Device \Driver\Klif IRP_MJ_FLUSH_BUFFERS klif.sys

Device \Driver\Klif IRP_MJ_QUERY_VOLUME_INFORMATION klif.sys

Device \Driver\Klif IRP_MJ_SET_VOLUME_INFORMATION klif.sys

Device \Driver\Klif IRP_MJ_DIRECTORY_CONTROL klif.sys

Device \Driver\Klif IRP_MJ_FILE_SYSTEM_CONTROL klif.sys

Device \Driver\Klif IRP_MJ_DEVICE_CONTROL klif.sys

Device \Driver\Klif IRP_MJ_INTERNAL_DEVICE_CONTROL klif.sys

Device \Driver\Klif IRP_MJ_SHUTDOWN klif.sys

Device \Driver\Klif IRP_MJ_LOCK_CONTROL klif.sys

Device \Driver\Klif IRP_MJ_CLEANUP klif.sys

Device \Driver\Klif IRP_MJ_CREATE_MAILSLOT klif.sys

Device \Driver\Klif IRP_MJ_QUERY_SECURITY klif.sys

Device \Driver\Klif IRP_MJ_SET_SECURITY klif.sys

Device \Driver\Klif IRP_MJ_POWER klif.sys

Device \Driver\Klif IRP_MJ_SYSTEM_CONTROL klif.sys

Device \Driver\Klif IRP_MJ_DEVICE_CHANGE klif.sys

Device \Driver\Klif IRP_MJ_QUERY_QUOTA klif.sys

Device \Driver\Klif IRP_MJ_SET_QUOTA klif.sys

Device \Driver\Klif IRP_MJ_PNP klif.sys

Device \Driver\Klif IRP_MJ_PNP_POWER klif.sys

Device \Driver\PnpManager IRP_MJ_CREATE ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_CREATE_NAMED_PIPE ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_CLOSEIRP_MJ_READ ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_WRITE ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_QUERY_INFORMATION ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_SET_INFORMATION ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_QUERY_EA ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_SET_EA ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_FLUSH_BUFFERS ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_QUERY_VOLUME_INFORMATION ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_SET_VOLUME_INFORMATION ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_DIRECTORY_CONTROL ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_FILE_SYSTEM_CONTROL ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_DEVICE_CONTROL ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_INTERNAL_DEVICE_CONTROL ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_SHUTDOWN ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_LOCK_CONTROL ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_CLEANUP ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_CREATE_MAILSLOT ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_QUERY_SECURITY ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_SET_SECURITY ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_POWER ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_SYSTEM_CONTROL ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_DEVICE_CHANGE ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_QUERY_QUOTA ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_SET_QUOTA ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_PNP ntoskrnl.exe

Device \Driver\PnpManager IRP_MJ_PNP_POWER ntoskrnl.exe

Device \Driver\swenum IRP_MJ_CREATE swenum.sys

Device \Driver\swenum IRP_MJ_CREATE_NAMED_PIPE ntoskrnl.exe

Device \Driver\swenum IRP_MJ_CLOSEIRP_MJ_READ swenum.sys

Device \Driver\swenum IRP_MJ_WRITE ntoskrnl.exe

Device \Driver\swenum IRP_MJ_QUERY_INFORMATION ntoskrnl.exe

Device \Driver\swenum IRP_MJ_SET_INFORMATION ntoskrnl.exe

Device \Driver\swenum IRP_MJ_QUERY_EA ntoskrnl.exe

Device \Driver\swenum IRP_MJ_SET_EA ntoskrnl.exe

Device \Driver\swenum IRP_MJ_FLUSH_BUFFERS ntoskrnl.exe

Device \Driver\swenum IRP_MJ_QUERY_VOLUME_INFORMATION ntoskrnl.exe

Device \Driver\swenum IRP_MJ_SET_VOLUME_INFORMATION ntoskrnl.exe

Device \Driver\swenum IRP_MJ_DIRECTORY_CONTROL ntoskrnl.exe

Device \Driver\swenum IRP_MJ_FILE_SYSTEM_CONTROL ntoskrnl.exe

Device \Driver\swenum IRP_MJ_DEVICE_CONTROL ntoskrnl.exe

Device \Driver\swenum IRP_MJ_INTERNAL_DEVICE_CONTROL swenum.sys

Device \Driver\swenum IRP_MJ_SHUTDOWN ntoskrnl.exe

Device \Driver\swenum IRP_MJ_LOCK_CONTROL ntoskrnl.exe

Device \Driver\swenum IRP_MJ_CLEANUP ntoskrnl.exe

Device \Driver\swenum IRP_MJ_CREATE_MAILSLOT ntoskrnl.exe

Device \Driver\swenum IRP_MJ_QUERY_SECURITY ntoskrnl.exe

Device \Driver\swenum IRP_MJ_SET_SECURITY ntoskrnl.exe

Device \Driver\swenum IRP_MJ_POWER ntoskrnl.exe

Device \Driver\swenum IRP_MJ_SYSTEM_CONTROL swenum.sys

Device \Driver\swenum IRP_MJ_DEVICE_CHANGE swenum.sys

Device \Driver\swenum IRP_MJ_QUERY_QUOTA ntoskrnl.exe

Device \Driver\swenum IRP_MJ_SET_QUOTA ntoskrnl.exe

Device \Driver\swenum IRP_MJ_PNP ntoskrnl.exe

Device \Driver\swenum IRP_MJ_PNP_POWER swenum.sys

Device \Driver\Tcpip IRP_MJ_CREATE tcpip.sys

Device \Driver\Tcpip IRP_MJ_CREATE_NAMED_PIPE tcpip.sys

Device \Driver\Tcpip IRP_MJ_CLOSEIRP_MJ_READ tcpip.sys

Device \Driver\Tcpip IRP_MJ_WRITE tcpip.sys

Device \Driver\Tcpip IRP_MJ_QUERY_INFORMATION tcpip.sys

Device \Driver\Tcpip IRP_MJ_SET_INFORMATION tcpip.sys

Device \Driver\Tcpip IRP_MJ_QUERY_EA tcpip.sys

Device \Driver\Tcpip IRP_MJ_SET_EA tcpip.sys

Device \Driver\Tcpip IRP_MJ_FLUSH_BUFFERS tcpip.sys

Device \Driver\Tcpip IRP_MJ_QUERY_VOLUME_INFORMATION tcpip.sys

Device \Driver\Tcpip IRP_MJ_SET_VOLUME_INFORMATION tcpip.sys

Device \Driver\Tcpip IRP_MJ_DIRECTORY_CONTROL tcpip.sys

Device \Driver\Tcpip IRP_MJ_FILE_SYSTEM_CONTROL tcpip.sys

Device \Driver\Tcpip IRP_MJ_DEVICE_CONTROL tcpip.sys

Device \Driver\Tcpip IRP_MJ_INTERNAL_DEVICE_CONTROL tcpip.sys

Device \Driver\Tcpip IRP_MJ_SHUTDOWN tcpip.sys

Device \Driver\Tcpip IRP_MJ_LOCK_CONTROL tcpip.sys

Device \Driver\Tcpip IRP_MJ_CLEANUP tcpip.sys

Device \Driver\Tcpip IRP_MJ_CREATE_MAILSLOT tcpip.sys

Device \Driver\Tcpip IRP_MJ_QUERY_SECURITY tcpip.sys

Device \Driver\Tcpip IRP_MJ_SET_SECURITY tcpip.sys

Device \Driver\Tcpip IRP_MJ_POWER tcpip.sys

Device \Driver\Tcpip IRP_MJ_SYSTEM_CONTROL tcpip.sys

Device \Driver\Tcpip IRP_MJ_DEVICE_CHANGE tcpip.sys

Device \Driver\Tcpip IRP_MJ_QUERY_QUOTA tcpip.sys

Device \Driver\Tcpip IRP_MJ_SET_QUOTA tcpip.sys

Device \Driver\Tcpip IRP_MJ_PNP tcpip.sys

Device \Driver\Tcpip IRP_MJ_PNP_POWER tcpip.sys

Device \Device\00000028

Device \Device\00000035

Device \Device\00000041

Device \Driver\Kbdclass IRP_MJ_CREATE kbdclass.sys

Device \Driver\Kbdclass IRP_MJ_CREATE_NAMED_PIPE ntoskrnl.exe

Device \Driver\Kbdclass IRP_MJ_CLOSEIRP_MJ_READ kbdclass.sys

Device \Driver\Kbdclass IRP_MJ_WRITE kbdclass.sys

Device \Driver\Kbdclass IRP_MJ_QUERY_INFORMATION ntoskrnl.exe

Device \Driver\Kbdclass IRP_MJ_SET_INFORMATION ntoskrnl.exe

Device \Driver\Kbdclass IRP_MJ_QUERY_EA ntoskrnl.exe

Device \Driver\Kbdclass IRP_MJ_SET_EA ntoskrnl.exe

Device \Driver\Kbdclass IRP_MJ_FLUSH_BUFFERS ntoskrnl.exe

Device \Driver\Kbdclass IRP_MJ_QUERY_VOLUME_INFORMATION kbdclass.sys

Device \Driver\Kbdclass IRP_MJ_SET_VOLUME_INFORMATION ntoskrnl.exe

Device \Driver\Kbdclass IRP_MJ_DIRECTORY_CONTROL nto

Udostępnij tę odpowiedź

Odnośnik do odpowiedzi
Udostępnij na innych stronach

Dołącz do dyskusji

Możesz dodać zawartość już teraz a zarejestrować się później. Jeśli posiadasz już konto, zaloguj się aby dodać zawartość za jego pomocą.

Gość
Dodaj odpowiedź do tematu...

×   Wklejono zawartość z formatowaniem.   Przywróć formatowanie

  Dozwolonych jest tylko 75 emoji.

×   Odnośnik został automatycznie osadzony.   Przywróć wyświetlanie jako odnośnik

×   Przywrócono poprzednią zawartość.   Wyczyść edytor

×   Nie możesz bezpośrednio wkleić grafiki. Dodaj lub załącz grafiki z adresu URL.

Ładowanie
×
Tematy
×
×
  • Dodaj nową pozycję...