GMER 2.1.19155 - http://www.gmer.net Rootkit scan 2013-03-21 10:12:07 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\00000075 ST950032 rev.0003 465,76GB Running: 9qk43epn.exe; Driver: C:\Users\Borys\AppData\Local\Temp\kglyypod.sys ---- Threads - GMER 2.1 ---- Thread C:\windows\system32\svchost.exe [784:828] 000007fefc8c332c Thread C:\windows\system32\svchost.exe [784:832] 000007fefc8c10b0 Thread C:\windows\System32\svchost.exe [336:4672] 000007fef3378a4c Thread C:\windows\System32\svchost.exe [336:4184] 000007fef9e288f8 Thread C:\windows\System32\svchost.exe [336:2464] 000007fef827a2b0 Thread C:\windows\system32\svchost.exe [364:1532] 000007fefa2d1e00 Thread C:\windows\system32\svchost.exe [364:1536] 000007fefa221a50 Thread C:\windows\system32\svchost.exe [364:1840] 000007fefd0c1a70 Thread C:\windows\system32\svchost.exe [364:1980] 000007fefd0c1a70 Thread C:\windows\system32\svchost.exe [364:2344] 000007fef94017f8 Thread C:\windows\system32\svchost.exe [364:3844] 000007fefbbf506c Thread C:\windows\system32\svchost.exe [364:3856] 000007fef8351c20 Thread C:\windows\system32\svchost.exe [364:3860] 000007fef8351c20 Thread C:\windows\system32\svchost.exe [364:1932] 000007fef2dd1ab0 Thread C:\windows\system32\svchost.exe [364:4156] 000007fef54c4164 Thread C:\windows\system32\svchost.exe [1104:1200] 000007fefaf78274 Thread C:\windows\system32\svchost.exe [1104:2920] 000007fefaf78274 Thread C:\windows\system32\svchost.exe [1356:1600] 000007fefd0c1a70 Thread C:\windows\system32\svchost.exe [1356:1608] 000007fefd0c1a70 Thread C:\windows\system32\svchost.exe [1356:1620] 000007fefd0c1a70 Thread C:\windows\system32\svchost.exe [1356:1628] 000007fefa0a2c70 Thread C:\windows\system32\svchost.exe [1356:1640] 000007fefa0afb40 Thread C:\windows\system32\svchost.exe [1356:1656] 000007fefa0c1d20 Thread C:\windows\system32\svchost.exe [1356:1660] 000007fefa0af6f0 Thread C:\windows\system32\svchost.exe [1356:1852] 000007fef9f735c0 Thread C:\windows\system32\svchost.exe [1356:2164] 000007fef9f75600 Thread C:\windows\system32\svchost.exe [1356:2232] 000007fef8512940 Thread C:\windows\system32\svchost.exe [1356:2952] 000007fefb052888 Thread C:\windows\system32\svchost.exe [1356:4452] 000007fefb052a40 Thread C:\windows\System32\spoolsv.exe [1556:148] 000007fef2f910c8 Thread C:\windows\System32\spoolsv.exe [1556:3728] 000007fef3c56144 Thread C:\windows\System32\spoolsv.exe [1556:3716] 000007fefb625fd0 Thread C:\windows\System32\spoolsv.exe [1556:1664] 000007fef2f73438 Thread C:\windows\System32\spoolsv.exe [1556:3680] 000007fefb6263ec Thread C:\windows\System32\spoolsv.exe [1556:3832] 000007fef55a5e5c Thread C:\windows\System32\spoolsv.exe [1556:3756] 000007fef3095074 Thread C:\windows\system32\svchost.exe [1908:2892] 000007fef95544e0 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [2832:4500] 000007fef7442a7c Thread C:\windows\System32\svchost.exe [4328:5072] 000007fef8139688 Thread C:\windows\SysWOW64\ntdll.dll [3384:2504] 000000000039f860 Thread C:\windows\SysWOW64\ntdll.dll [3384:4864] 000000000034f4cf Thread C:\windows\SysWOW64\ntdll.dll [3384:4680] 000000000034f4cf ---- EOF - GMER 2.1 ----