GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2014-08-27 12:03:34 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 ST3400620AS rev.3.AAK 372,61GB Running: uv0oltpk.exe; Driver: C:\Users\Zbool\AppData\Local\Temp\awddikod.sys ---- User code sections - GMER 2.1 ---- .text D:\Eset\x86\ekrn.exe[1688] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 0000000076c88791 4 bytes [C2, 04, 00, 00] .text D:\Eset\x86\ekrn.exe[1688] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 0000000076841465 2 bytes [84, 76] .text D:\Eset\x86\ekrn.exe[1688] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 00000000768414bb 2 bytes [84, 76] .text ... * 2 .text D:\Programy\Malwarebytes Anti-Malware\mbamscheduler.exe[1572] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076841465 2 bytes [84, 76] .text D:\Programy\Malwarebytes Anti-Malware\mbamscheduler.exe[1572] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000768414bb 2 bytes [84, 76] .text ... * 2 .text D:\Programy\Malwarebytes Anti-Malware\mbam.exe[2136] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076841465 2 bytes [84, 76] .text D:\Programy\Malwarebytes Anti-Malware\mbam.exe[2136] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000768414bb 2 bytes [84, 76] .text ... * 2 ---- Processes - GMER 2.1 ---- Library C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9FE1B887-C368-493B-B2CB-77592A39EFF0}\offreg.dll (*** suspicious ***) @ C:\Windows\System32\svchost.exe [4576](2014-08-27 09:34:21) 000007feea260000 ---- EOF - GMER 2.1 ----