GMER 2.2.19882 - http://www.gmer.net Rootkit scan 2016-09-07 00:15:22 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 ST9320423AS rev.0004SDM1 298,09GB Running: p5n4qr58.exe; Driver: C:\Users\119383\AppData\Local\Temp\ufriyfow.sys ---- User code sections - GMER 2.2 ---- .text C:\Program Files\AVAST Software\Avast\avastui.exe[3540] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 00000000756c8791 8 bytes [31, C0, C2, 04, 00, 90, 90, ...] ---- Registry - GMER 2.2 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\Instup_14672319092052272@SetupOperations ????????? ?????????????????????0????????????????????@system32\drivers\pci.sys,#2176;Base System Device?ie systemowe?????Rodzajowa kopia w tle wolumin?w??z??????????? ?????????????????????0????????????????????Microsoft???? ?????????????????????0?????????????????????????????g?i?i?i?i?i?i?i?i?i?i??14??????????????? ?????????????????????0????????????????????????????????????????? ?????????????????????0????????????????????? p?????????????????????????????????????????????? ?????????????????????0????????????&???????????????????????? ?????????????????????0????????????????????????????? ?????????????????????0????????????????????? ?????????????????????0????????????????????????????????? ?????????????????????0????????????????????PCI_DRV?????? ?????????????????????0????????????????????{4d36e97d-e325-11ce-bfc1-08002be10318}\0007?????????????? ?????????????????????0????????????????????????????????????????? ?????????????????????0????????????????????oem55.inf:INTEL_SYS.NTamd64:NO_DRV:9.1.1.1013:pci\ven_8086&dev_d151??????_?_?f? Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters\Instup_14672319456332272@SetupOperations ????????????????? ?????????????????????0????????????????????????????????????????? ?????????????????????0????????????????????????????????????????????????????????????????????? ???????? ????????????0????????????&???????????????????????????????????? ?????????????????????0????????????????????? ?????????????????????0?????????????????????H???5????Urz?dzenie Bluetooth (sie? osobista)??????????? ?????????????????????0????????????????????????????????? ?????????????????????0????????????????????@%systemroot%\system32\rascfg.dll,-32002????????????????? ?????????????????????0??????????????????????$?????????????????? ?????????????????????0????????6???????????@%systemroot%\system32\rascfg.dll,-32001?????????????_??????????????????? ?????????????????????0????????????????????? ?????????????????????0?????????????????????????????????e???????????r?????????Smb??*isatap?t???????????? ?????????????????????0?????????????????????_?f?e?f?h?h?h?h???h?h?h?h???g??? ?????????????????????0??????????????????????*???????????????????????????? Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\904ce5cb5ab8 Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\Instup_14672319092052272@SetupOperations ????????? ?????????????????????0????????????????????????????? ???????????????????h?0????????????????????@%SystemRoot%\system32\drivers\fvevol.sys,-100???????l?h?n?u?u?u????????Realtek 8167 NT Driver??????????????????????????????? ?????????????????????0????????????????????????????????? ???????????????????h?0????????????????????? x?????????????????wpdbusenum\fs???????????????? ?????????????????????0????????????????????????????????????????? ???????????????????h?0????????????????????9.1.1.1013?.1.???k?k?k?j?k?k?j?k?j???l??????????? ?????????????h???????0????????????&???????????????????????????????????? ?????????????????????0????????????????????? ???????????????????h?0????????????????????G??wny koncentrator USB??????? ??d???????????e??????????? ?????????????????????0????????????????????rdyboost????? ???????????????????h?0????????????????????@system32\drivers\pci.sys,#1540;PCI to PCI Bridge???????????? ?????????????????????0????????????????????? x?????????????????? ???????????????????t?0????????\???????????sdbus.i Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters\Instup_14672319456332272@SetupOperations ?????t???????????????????????????????????e??Home????? ???????~??????????? p?????????????s???? ??????? ??????????????????????????????t.???????????_??ut??????aswRvrt?s???????????????????? ?????????????????????????????????????????????/?&??? ???????????????????????????????????????f??????????????? ?????????????????????0??L????????? ???????c???????????????????????? ?????????????????????0????????????&???????????????????????? ?????????????????????0????????????????????? ???????????????????z?0????????d???????????Intel(R) 5 Series/3400 Series Chipset Family SMBus Controller - 3B30???????????????????t????????????? ?????????????????????0????????????&????????????????????3??????????t???? ?????????????????????0????????????????????? ???????????????????j?0????????????????????@system32\drivers\pci.sys,#4480;PCI Data Acquisition and Signal Processing Controller???w???????????????????????????????????? ?????????????????????0??????????????????????????.?????? ???????????????????j?0????????????????????????????????????????*ISATAP???? Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\904ce5cb5ab8 (not active ControlSet) ---- EOF - GMER 2.2 ----