GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2015-12-21 14:38:38 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD32 rev.01.0 298,09GB Running: o1x39fhq.exe; Driver: C:\Users\Asus\AppData\Local\Temp\kftcqaoc.sys ---- User IAT/EAT - GMER 2.1 ---- IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!??_U@YAPEAX_K@Z] [9cd8e0ffc3b41] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!wcsstr] [3f348d480b8b4800] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_wcsupr] [45e8c68b4cd58b48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!memset] [3b48038b48000000] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!malloc] [89f4c08348000112] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_XcptFilter] [894466038b480478] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!??3@YAXPEAX@Z] [245c8b4800eb0624] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_amsg_exit] [8b4838246c8b4830] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_unlock] [48247c8b48402474] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!__dllonexit] [90c35c4120c48348] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_lock] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_onexit] [90900002bbea25ff] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!memcmp] [245c894890909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!wcscpy_s] [834820ec83485708] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!wcscat_s] [fa8b000c6183ff09] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_wcsicmp] [10841c7d98b48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!??2@YAPEAX_K@Z] [2bf1015ff0000] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_initterm] [8b48c78b44cb8b4c] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!??_V@YAXPEAX@Z] [15ff0000000ebac8] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!free] [850fc0850002bef4] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!wcsncpy_s] [bdf615ff000023ba] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!_vsnwprintf] [44840f05f8830002] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[msvcrt.dll!memcpy] [3f03d0000bd] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!NtQueryInformationToken] [48c38b4800eb0008] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!NtClose] [20c4834830245c8b] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!NtOpenThreadToken] [909090909090c35f] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!RtlFreeUnicodeString] [798330ec8348f3ff] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!RtlStringFromGUID] [8d850fd98b480008] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!RtlVirtualUnwind] [fff3b8348000023] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!RtlLookupFunctionEntry] [c48348000023a785] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!RtlCaptureContext] [48f4508d48c35b30] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ntdll.dll!NtOpenProcessToken] [3b48000433520d8d] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!ReleaseActCtx] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!ActivateActCtx] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!DeactivateActCtx] [6c894808245c8948] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!FreeLibrary] [5541544157561024] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!CreateDirectoryW] [db3320ec83485641] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!CreateActCtxW] [d33be98b4ce08b4d] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!SetUnhandledExceptionFilter] [1bf00001d94840f] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!UnhandledExceptionFilter] [8b840fd73b000000] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetCurrentProcess] [5c8b48c78b000019] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!TerminateProcess] [4858246c8b485024] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetSystemTimeAsFileTime] [415d415e4120c483] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetCurrentProcessId] [90909090c35e5f5c] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetCurrentThreadId] [245c894890909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetTickCount] [4857102474894808] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!QueryPerformanceCounter] [da8bf88b4920ec83] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!Sleep] [840f01fa83f18b48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetVersionExA] [8bc78b4c00001a0a] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetModuleHandleW] [245c8b48ce8b48d3] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!LoadLibraryW] [90909007eb5f20c4] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!RegQueryInfoKeyW] [2444894c90909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetModuleFileNameW] [ec81485756530824] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!lstrlenW] [8b48fa8b00000140] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!RaiseException] [5c8900000001bbf1] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!SetThreadLocale] [42f7815892024] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetLastError] [1c19840fd285] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetThreadLocale] [2fa83057401fa83] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetProcAddress] [43b7f058b483275] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!DisableThreadLibraryCalls] [8b4c1a74db850001] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!RegOpenKeyExW] [d78b000001702484] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!RegCloseKey] [eb20244489d88b] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!CreateProcessW] [24848b4c2c74db85] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!HeapFree] [d88b0000003ae8ce] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetProcessHeap] [ff8300eb20244489] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!lstrcmpiA] [8500001316840f01] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!CloseHandle] [267403ff832b74ff] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!ExpandEnvironmentStringsW] [ffff00042efe05c7] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetTempFileNameW] [90c35b5e5f000001] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!WriteFile] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetSystemDirectoryW] [8b4cc300000001b8] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!RegQueryValueExW] [d78b000001702484] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!CheckElevationEnabled] [fffffe98e8ce8b48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!CreateFileW] [1eb20244489d88b] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetBinaryTypeW] [43ae0058b4890] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!GetTempPathW] [238be9b374c08548] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[KERNEL32.dll!LocalFree] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!EnableWindow] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!UnregisterClassA] [17e828ec8348] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!GetParent] [6dd840fc0854800] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!SendMessageW] [90c328c483480001] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!GetWindowLongPtrW] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!SetWindowLongPtrW] [90900002be3a25ff] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!GetDlgItem] [245c894890909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!SendDlgItemMessageW] [8b4820ec83485708] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!LoadStringA] [d92840fd28548d9] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!GetSystemMetrics] [c033ffc983480000] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!LoadStringW] [f748aff266fa8b48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!InsertMenuW] [8bc28b4cc9ff48d1] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!SetProcessDPIAware] [17e8cb8b48d1] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!CharNextW] [245c8b48c38b4800] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[USER32.dll!IsWindowEnabled] [90c35f20c4834830] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHLWAPI.dll!PathFileExistsW] [458890c58748966] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHLWAPI.dll!PathFindExtensionW] [480cc08348085889] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHLWAPI.dll!StrCmpIW] [245c8b4800eb0789] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHLWAPI.dll!PathFindFileNameW] [83484024748b4830] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHELL32.dll!DragQueryFileW] [3bf98b48f633da63] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHELL32.dll!SHParseDisplayName] [f000112f1840fde] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHELL32.dll!SHGetNameFromIDList] [11307870f3fffff] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHELL32.dll!SHChangeNotify] [48c8634801438d00] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[SHELL32.dll!SHGetPathFromIDListW] [3fe80c094c8d] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!CoGetObject] [c8ff02c10ff0ffc8] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!CoUninitialize] [48038b481a7fc085] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!ReleaseStgMedium] [9740004355a053b] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!StringFromGUID2] [74c98548f4488d48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!CoCreateInstance] [8b48fffffca2e805] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!HWND_UserSize] [389480004354305] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!HWND_UserSize64] [408d4cfffffcfce9] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!CoTaskMemFree] [9090000001ebe9f4] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!HWND_UserMarshal64] [244c894890909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!HWND_UserFree64] [c74830ec83485308] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!HWND_UserUnmarshal64] [48fffffffe202444] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!HWND_UserMarshal] [4350f058b48d98b] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!CoCreateGuid] [2441c61841894800] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!HWND_UserUnmarshal] [8348000861834800] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!CoInitializeEx] [e800218348001061] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[ole32.dll!HWND_UserFree] [2b0d3d830000013c] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrOleAllocate] [909090909090c328] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrCStdStubBuffer_Release] [8b4820ec8348f3ff] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrStubForwardingFunction] [45053b48d98b4801] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_Connect] [2ba850f000438] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_Invoke] [90c35b20c4834800] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_IsIIDSupported] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_Disconnect] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_DebugServerRelease] [83485708245c8948] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrDllUnregisterProxy] [f98b48018b4820ec] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrDllGetClassObject] [4c000438110d8b48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrStubCall3] [da8b000435e2058d] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!IUnknown_AddRef_Proxy] [850fc13b48c88b4d] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrCStdStubBuffer2_Release] [139834100000979] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_QueryInterface] [73850fc13b480f7f] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_DebugServerQueryInterface] [7e08503b41000009] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_AddRef] [ffff87e8cf8b4812] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrDllRegisterProxy] [1de8cf8b48d38bff] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!CStdStubBuffer_CountRefs] [30245c8b48000000] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrDllCanUnloadNow] [9090c35f20c48348] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!NdrOleFree] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!IUnknown_Release_Proxy] [9090909090909090] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[RPCRT4.dll!IUnknown_QueryInterface_Proxy] [74894808245c8948] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[VERSION.dll!GetFileVersionInfoSizeW] [4808588948c48b48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[VERSION.dll!GetFileVersionInfoW] [4818708948106889] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[VERSION.dll!VerQueryValueW] [ec83485441207889] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[wer.dll!WerReportSubmit] [4808588948c48b48] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[wer.dll!WerReportCreate] [5718708948106889] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[wer.dll!WerReportAddFile] [100b940ec8348] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[wer.dll!WerReportCloseHandle] [89f08b49f98b4900] IAT C:\Windows\Explorer.EXE[320] @ C:\Windows\system32\acppage.dll[wer.dll!WerReportSetParameter] [fd76e8ea8b48e848] ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\0025d3b2962e Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\bc773702cb9a Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\0025d3b2962e (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\bc773702cb9a (not active ControlSet) ---- EOF - GMER 2.1 ----