GMER 2.2.19882 - http://www.gmer.net
Rootkit scan 2016-11-26 16:14:19
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\00000030 TOSHIBA_DT01ACA050 rev.MS1OA750 465,76GB
Running: eqwu37s1.exe; Driver: C:\Users\GMINAR~1\AppData\Local\Temp\uwlcypob.sys


---- Threads - GMER 2.2 ----

Thread  C:\WINDOWS\system32\csrss.exe [516:584]                                            fffff961ca704030
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [1492:1496]                                          0000000000f7bca3
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [1492:1568]                                          0000000000f7976d
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [1492:1576]                                          0000000000f7976d
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [1492:1584]                                          0000000000f7976d
Thread  C:\WINDOWS\SYSTEM32\ntdll.dll [1492:1616]                                          0000000000f7976d

---- Registry - GMER 2.2 ----

Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed  1634588734
Reg     HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\63\0@Rw                                 0x64 0x62 0x03 0x00 ...
Reg     HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\63\0@RwMask                             0x64 0x62 0x03 0x00 ...
Reg     HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\63\1@Rw                                 0x64 0x62 0x03 0x00 ...
Reg     HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\63\1@RwMask                             0x64 0x62 0x03 0x00 ...

---- EOF - GMER 2.2 ----