GMER 2.1.19163 - http://www.gmer.net Rootkit scan 2014-05-13 17:13:54 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4 KINGSTON_SH103S3120G rev.502ABBF0 111,79GB Running: m57g1hli.exe; Driver: C:\Users\ADFX\AppData\Local\Temp\aftcqaod.sys ---- Kernel code sections - GMER 2.1 ---- INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528 fffff80002df3000 45 bytes [00, 00, 51, 02, 54, 68, 72, ...] INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 575 fffff80002df302f 16 bytes [00, 01, 00, 00, 00, 00, 00, ...] ---- User code sections - GMER 2.1 ---- .text C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe[8072] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000077841465 2 bytes [84, 77] .text C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe[8072] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000778414bb 2 bytes [84, 77] .text ... * 2 ---- Files - GMER 2.1 ---- File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E3F5.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E416.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E438.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E459.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E47A.tmp 0 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E47B.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E48D.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E4AE.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E4CF.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E4E1.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E502.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E513.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E535.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E546.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E567.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E579.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E59A.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E5BB.tmp 0 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E5BC.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E5CE.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E5EF.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E610.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E622.tmp 28134 bytes File C:\Users\ADFX\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons\E643.tmp 0 bytes ---- EOF - GMER 2.1 ----