GMER 2.2.19882 - http://www.gmer.net Rootkit scan 2021-03-01 00:44:51 Windows 6.2.9200 x64 Running: krbdoipj.exe ---- Registry - GMER 2.2 ---- Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed -1883524436 Reg HKLM\SYSTEM\CurrentControlSet\Services\bam\State\UserSettings\S-1-5-21-3301798295-1479312048-726204381-1001@SequenceNumber 191 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\Interfaces\{0a286078-56d6-4168-a40e-0c767de66987}@Dhcpv6MaxLeaseExpireTime 1614559500 Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\Interfaces\{0a286078-56d6-4168-a40e-0c767de66987}@Dhcpv6LeaseObtainedTime 1614552300 Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeEstimated 0x60 0x02 0x08 0x49 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeHigh 0x60 0x6A 0xCC 0xAA ... Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeLow 0x60 0x9A 0x43 0xE7 ... Reg HKLM\SYSTEM\Maps@LastMapUpdateCheck 0x26 0x00 0xA8 0x44 ... Reg HKCU\Software\Microsoft\Windows\CurrentVersion\ActivityDataModel\ReaderRevisionInfo@DE28E646-6DD0-FC62-65AF-F772DEE634A7 1???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????? Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FeatureUsage\AppSwitched@com.squirrel.Discord.Discord 64204 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Search\JumplistData@Chrome 0xA0 0x29 0x90 0x7B ... Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\HostActivityManager\CommitHistory\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App@Pure 0x55 0xAD 0x12 0x02 ... ---- EOF - GMER 2.2 ----