GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2014-05-10 11:59:59 Windows 6.1.7600 x64 \Device\Harddisk0\DR0 -> \Device\00000068 Hitachi_ rev.PB3O 298,09GB Running: 6zseqypf.exe; Driver: C:\Users\Eryk\AppData\Local\Temp\kftcyaog.sys ---- User code sections - GMER 2.1 ---- .text C:\Windows\AsScrPro.exe[3840] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076bc1465 2 bytes [BC, 76] .text C:\Windows\AsScrPro.exe[3840] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076bc14bb 2 bytes [BC, 76] .text ... * 2 ---- Files - GMER 2.1 ---- File C:\ADSM_PData_0150 0 bytes File C:\ADSM_PData_0150\DB 0 bytes File C:\ADSM_PData_0150\DB\SI.db 624 bytes File C:\ADSM_PData_0150\DB\UL.db 16 bytes File C:\ADSM_PData_0150\DB\VL.db 16 bytes File C:\ADSM_PData_0150\DB\WAL.db 2048 bytes File C:\ADSM_PData_0150\DragWait.exe 315392 bytes executable File C:\ADSM_PData_0150\_avt 512 bytes File C:\Users\Eryk\AppData\Local\Mozilla\Firefox\Profiles\pfmxg31n.default\Cache\5\B9\74806m01 4613 bytes File C:\Users\Eryk\AppData\Local\Mozilla\Firefox\Profiles\pfmxg31n.default\Cache\5\BD\AEA0Fd01 16412 bytes File C:\Users\Eryk\AppData\Local\Mozilla\Firefox\Profiles\pfmxg31n.default\Cache\7\94\B3D93m01 4612 bytes File C:\Users\Eryk\AppData\Local\Mozilla\Firefox\Profiles\pfmxg31n.default\Cache\9\77\11AD5m01 4612 bytes File C:\Users\Eryk\AppData\Local\Mozilla\Firefox\Profiles\pfmxg31n.default\Cache\9\F3\F4510d01 73336 bytes ---- EOF - GMER 2.1 ----