GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2015-11-27 17:22:58
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-2 WDC_WD10EADS-00L5B1 rev.01.01A01 931,51GB
Running: b1pn6jfh.exe; Driver: C:\Users\ALCHEM~1\AppData\Local\Temp\agrdqaoc.sys


---- Threads - GMER 2.1 ----

Thread  C:\Windows\SysWOW64\rundll32.exe [3552:3076]  0000000000aefe30
Thread  C:\Windows\SysWOW64\rundll32.exe [3552:3972]  0000000000b09260
Thread  C:\Windows\SysWOW64\rundll32.exe [3552:3144]  0000000000b4144b
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:2520]  00000000002b0000
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:4316]  00000000007311f5
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:1276]  00000000007313c0
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:4576]  000000000073184a
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:4928]  0000000000753927
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:3992]  00000000007346c2
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:4184]  000000000074445b
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:4952]  0000000000736d8f
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:4460]  0000000000737489
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:1612]  0000000000736d8f
Thread  C:\Windows\SysWOW64\rundll32.exe [4872:2788]  0000000000736d8f

---- EOF - GMER 2.1 ----