GMER 2.2.19882 - http://www.gmer.net
Rootkit scan 2017-05-08 18:03:46
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\0000003f THNSN5128GPU7_TOSHIBA rev.57XA4104 119,24GB
Running: rmq2tm48.exe; Driver: C:\Users\t9\AppData\Local\Temp\pgldypob.sys


---- Disk sectors - GMER 2.2 ----

Disk     \Device\Harddisk0\DR0                                            unknown MBR code

---- Threads - GMER 2.2 ----

Thread   C:\Windows\system32\csrss.exe [8932:3940]                        ffffe7070ed36c20

---- Services - GMER 2.2 ----

Service  C:\Windows\system32\drivers\mbae64.sys (*** hidden *** )         [SYSTEM] ESProtectionDriver   <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\MBAMChameleon.sys (*** hidden *** )  [AUTO] MBAMChameleon          <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\farflt.sys (*** hidden *** )         [MANUAL] MBAMFarflt           <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\mbam.sys (*** hidden *** )           [MANUAL] MBAMProtection       <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\MBAMSwissArmy.sys (*** hidden *** )  [BOOT] MBAMSwissArmy          <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\mwac.sys (*** hidden *** )           [MANUAL] MBAMWebProtection    <-- ROOTKIT !!!

---- EOF - GMER 2.2 ----