GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2014-01-29 18:26:31 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SAMSUNG_HM321HI rev.2AJ10003 298,09GB Running: lfb0qp35.exe; Driver: C:\Users\luq92\AppData\Local\Temp\uwddqkow.sys ---- Threads - GMER 2.1 ---- Thread C:\Windows\system32\svchost.exe [1288:1372] 000007fefa668274 Thread C:\Windows\system32\svchost.exe [1288:1544] 000007fefa668274 Thread C:\Windows\system32\WLANExt.exe [1584:1872] 0000000074eb1dbc Thread C:\Windows\system32\WLANExt.exe [1584:1876] 000007fef9978f00 Thread C:\Windows\system32\WLANExt.exe [1584:1884] 0000000074eb1dbc Thread C:\Windows\system32\WLANExt.exe [1584:1972] 000007fef8a22f9c Thread C:\Windows\system32\WLANExt.exe [1584:1192] 000007fef87746e4 Thread C:\Windows\system32\WLANExt.exe [1584:1196] 000007fef8774700 Thread C:\Windows\system32\WLANExt.exe [1584:1200] 000007fef87746c8 Thread C:\Windows\system32\WLANExt.exe [1584:1204] 000007fef8a22f9c Thread C:\Program Files\Core Temp\Core Temp.exe [1172:1180] 000007fefaf22a7c Thread C:\Windows\System32\rundll32.exe [1308:1216] 000007fefb3b6204 Thread C:\Windows\System32\rundll32.exe [1308:1208] 00000000733581bc Thread C:\Windows\System32\rundll32.exe [1308:1468] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:1964] 00000000732dcad8 Thread C:\Windows\System32\rundll32.exe [1308:1896] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2052] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2056] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2060] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2064] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2068] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2076] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2080] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2084] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2088] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2104] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2108] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2112] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2116] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2120] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2124] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2128] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2140] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2144] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2148] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2152] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2184] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2188] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2192] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2196] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2216] 00000000732e7c50 Thread C:\Windows\System32\rundll32.exe [1308:2220] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2224] 00000000732e8b28 Thread C:\Windows\System32\rundll32.exe [1308:2228] 00000000732e7c50 Thread C:\Windows\system32\svchost.exe [2404:2564] 000007fef41f5fd0 Thread C:\Windows\system32\svchost.exe [2404:3896] 000007fef41f63ec Thread C:\Windows\system32\svchost.exe [2404:3468] 000007fef3a48470 Thread C:\Windows\system32\svchost.exe [2404:3476] 000007fef3a52418 ---- EOF - GMER 2.1 ----