GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2015-04-27 13:48:53
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\0000002e ST500LT012-1DG142 rev.0001SDM1 465,76GB
Running: gmer.exe; Driver: C:\Users\user\AppData\Local\Temp\ugldrpob.sys


---- User code sections - GMER 2.1 ----

.text   C:\WINDOWS\system32\services.exe[752] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165        00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\system32\lsass.exe[760] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165           00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\system32\dwm.exe[1008] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165            00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\system32\svchost.exe[368] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165         00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\System32\svchost.exe[996] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165         00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\Explorer.EXE[1348] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165                00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\system32\SearchIndexer.exe[2928] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165  00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\system32\wbem\wmiprvse.exe[1600] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165  00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\System32\svchost.exe[2120] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165        00007ff865d6d3c5 1 byte [62]
.text   C:\WINDOWS\system32\AUDIODG.EXE[4384] C:\WINDOWS\SYSTEM32\KERNEL32.DLL!GetBinaryTypeW + 165        00007ff865d6d3c5 1 byte [62]

---- Threads - GMER 2.1 ----

Thread  C:\WINDOWS\system32\csrss.exe [712:744]                                                            fffff960009492d0

---- Disk sectors - GMER 2.1 ----

Disk    \Device\Harddisk0\DR0                                                                              unknown MBR code

---- EOF - GMER 2.1 ----