GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2014-12-18 23:40:00 Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\0000001e ST1000LM024_HN-M101MBB rev.2AR20004 931,51GB Running: gmer.exe; Driver: C:\Users\OOGAMA~1\AppData\Local\Temp\kxldqpod.sys ---- User code sections - GMER 2.1 ---- .text C:\WINDOWS\system32\wininit.exe[720] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\winlogon.exe[784] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\services.exe[824] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\lsass.exe[832] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\svchost.exe[904] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\svchost.exe[944] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\dwm.exe[292] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\atiesrxx.exe[352] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\atiesrxx.exe[352] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7ce6169a 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\atiesrxx.exe[352] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd7ce616a2 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\atiesrxx.exe[352] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7ce6181a 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\atiesrxx.exe[352] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd7ce61832 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\System32\svchost.exe[432] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\svchost.exe[636] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\svchost.exe[836] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\System32\svchost.exe[1084] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe[1172] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[1188] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\svchost.exe[1216] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\svchost.exe[1248] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\WLANExt.exe[1344] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\WLANExt.exe[1344] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7ce6169a 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\WLANExt.exe[1344] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd7ce616a2 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\WLANExt.exe[1344] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7ce6181a 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\WLANExt.exe[1344] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd7ce61832 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\conhost.exe[1352] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\System32\spoolsv.exe[1612] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe[1892] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Intel\WiFi\bin\EvtEng.exe[1932] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Intel\WiFi\bin\EvtEng.exe[1932] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7ce6169a 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\Intel\WiFi\bin\EvtEng.exe[1932] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd7ce616a2 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\Intel\WiFi\bin\EvtEng.exe[1932] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7ce6181a 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\Intel\WiFi\bin\EvtEng.exe[1932] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd7ce61832 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\Intel\WiFi\bin\EvtEng.exe[1932] C:\WINDOWS\SYSTEM32\WSOCK32.dll!setsockopt + 194 00007ffd70271f6a 4 bytes [27, 70, FD, 7F] .text C:\Program Files\Intel\WiFi\bin\EvtEng.exe[1932] C:\WINDOWS\SYSTEM32\WSOCK32.dll!setsockopt + 218 00007ffd70271f82 4 bytes [27, 70, FD, 7F] .text C:\WINDOWS\system32\dashost.exe[1948] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\ProgramData\DatacardService\HWDeviceService64.exe[1640] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text c:\Program Files\Intel\iCLS Client\HeciServer.exe[1484] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe[2140] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe[2140] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7ce6169a 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe[2140] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd7ce616a2 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe[2140] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7ce6181a 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe[2140] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd7ce61832 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\svchost.exe[2220] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\svchost.exe[2724] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\svchost.exe[2744] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\atieclxx.exe[2132] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\atieclxx.exe[2132] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7ce6169a 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\atieclxx.exe[2132] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd7ce616a2 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\atieclxx.exe[2132] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7ce6181a 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\system32\atieclxx.exe[2132] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd7ce61832 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\Explorer.EXE[3172] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\taskeng.exe[3240] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\taskhostex.exe[3268] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\SearchIndexer.exe[4004] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Windows\System32\skydrive.exe[3532] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Windows\System32\igfxtray.exe[284] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\igfxsrvc.exe[2720] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Windows\System32\hkcmd.exe[1156] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Windows\System32\igfxpers.exe[932] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Windows\System32\igfxpers.exe[932] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7ce6169a 4 bytes [E6, 7C, FD, 7F] .text C:\Windows\System32\igfxpers.exe[932] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd7ce616a2 4 bytes [E6, 7C, FD, 7F] .text C:\Windows\System32\igfxpers.exe[932] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7ce6181a 4 bytes [E6, 7C, FD, 7F] .text C:\Windows\System32\igfxpers.exe[932] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd7ce61832 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe[3932] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe[3356] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe[2900] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe[4468] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Windows\System32\SettingSyncHost.exe[2280] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\system32\AUDIODG.EXE[2516] C:\WINDOWS\SYSTEM32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\My Dell\pcdrcui.exe[5656] C:\WINDOWS\system32\KERNEL32.dll!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\My Dell\pcdrcui.exe[5656] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7ce6169a 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\My Dell\pcdrcui.exe[5656] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd7ce616a2 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\My Dell\pcdrcui.exe[5656] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7ce6181a 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\My Dell\pcdrcui.exe[5656] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd7ce61832 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\My Dell\pcdrrealtime.p5x[1492] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Program Files\My Dell\pcdrrealtime.p5x[1492] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffd7ce6169a 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\My Dell\pcdrrealtime.p5x[1492] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffd7ce616a2 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\My Dell\pcdrrealtime.p5x[1492] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffd7ce6181a 4 bytes [E6, 7C, FD, 7F] .text C:\Program Files\My Dell\pcdrrealtime.p5x[1492] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffd7ce61832 4 bytes [E6, 7C, FD, 7F] .text C:\WINDOWS\SYSTEM32\notepad.exe[3720] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\SYSTEM32\notepad.exe[2780] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\notepad.exe[5272] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\WINDOWS\notepad.exe[4184] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] .text C:\Windows\System32\WUDFHost.exe[4548] C:\WINDOWS\system32\KERNEL32.DLL!GetBinaryTypeW + 165 00007ffd7cd3553d 1 byte [62] ---- Threads - GMER 2.1 ---- Thread C:\WINDOWS\system32\csrss.exe [736:764] fffff96000953b90 ---- Processes - GMER 2.1 ---- Library C:\ProgramData\PCDr\6426\AddOnDownloaded\a61f44a8-21a3-4c4a-a04b-993dfb73bf96.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000021570000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\7bd83798-7a02-4f50-83a2-b91cabcbd1f9.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001c6b0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\ddb9fe5d-525c-4d5d-ac37-0bd10f2864f8.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001c7b0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\739db3eb-d3cd-4c86-a6ea-01a49984fa3b.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001cab0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\173c4dd2-e93c-4725-b006-db1d8f465192.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001cac0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\934f6059-2d35-4bd9-a130-a17cb5563507.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001ccd0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\62d1f0b0-bc9a-4f6c-bad7-93b19a91276a.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001e0c0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\378deb7f-049e-4a5e-83b2-5381dcd9e928.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001cd50000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\4804ced5-915b-48a3-a465-b8a5e02714bf.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001de50000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\d34c0cf7-889f-43dd-9283-b2b6f442aae3.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001c6a0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\3410f47b-5e8c-47c6-bf2c-234af4121d4c.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001df60000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\bc6fc708-5b6b-4a72-b336-09b3089baa7a.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001c690000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\b2152f30-7380-4987-8fcf-e4c06952615d.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001cd60000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\100c3865-0c76-461b-b2fd-042d6d5fa7f6.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001de20000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\b4cc2a4a-87f5-49cd-935c-18f1a80e65b7.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001e0f0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\0d461521-7dbf-4cec-a29e-936c88cdf8c9.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001e580000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\c4211805-b43b-471d-81af-4e0589f8607b.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001f6a0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\3b1c7acd-5e3e-4459-ab98-5109117e2341.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000216f0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\ef78c3e8-1d94-4219-8070-7617e119bba4.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000021720000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\67c3d4fe-b638-467a-9fe2-c5813ade3330.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001c6c0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\e45cd45a-4d7c-4802-881f-74582b847e5c.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001df70000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\872965c7-08b7-47fc-a74c-ff167590b71a.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001e110000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\6b5978fa-48d7-4309-a523-7e157768c0d8.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000020d40000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\4818e109-9489-4cd8-9044-44defd8ec187.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001cd00000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\263d6ac9-4f87-466c-947c-bd9af71d7035.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 000000001cd20000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\6f4fb483-ce30-493a-8cb4-3e530ab1be5b.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000021740000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\a9de0c84-9a7c-4638-9653-13aa8cf56e80.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000021760000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\cdda52ec-6ccd-425a-8c72-b7bbdc8b3acd.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000021780000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\1e0aaf9a-9947-4a7b-b1ae-8a89919438ed.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000217a0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\4546f2bc-b9d9-4667-abe7-b0bacc90279e.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000217c0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\6820b110-e483-4f1e-9b48-438f7916f078.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023940000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\813755dc-2229-47a2-b85b-19d0aaa641c9.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023960000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\f06c5597-1a85-4d1f-ac16-a6fdd2a6bedc.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023980000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\bf647bd7-dfb5-4746-a6b4-b7c2fdbbf3b1.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000239a0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\7dbfef1a-6148-4748-a1b3-71627763a45a.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000239c0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\3972fea3-214c-4935-a7d1-96bf66115683.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000239e0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\e9bb45d9-5a2b-47e8-9c48-168276d422cc.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023a80000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\3a79f062-8f3e-464f-9815-2c45840494ee.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023a50000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\ae67b364-b69e-471e-b177-2459120b84d4.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023a30000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\f9dc840b-c6f7-42a5-acec-50cc7a2827fd.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026d80000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\d1f4dc82-bc4c-4916-b37c-3ab9c30ae468.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000271b0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\8d357f17-07ad-4392-ba06-fb67564c98cd.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000271d0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\b9ce760f-6209-48f2-a4a3-695324591c45.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000271f0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\dfc97e68-74cd-4807-807f-ac146d81ec5d.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000027230000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\e5a71f43-c979-4b3d-a544-9ed1dc6dc4c8.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000027250000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\f04a4d58-1eb6-4e35-b4b4-db6bab11e49b.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026dc0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\2eccd5d6-e118-4f76-97b6-ba56fb6c597a.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023a20000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\bea3f575-677a-4c92-89ca-7be8480c11a9.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026d60000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\1b0b3c38-2b97-4f8d-954b-06296209b73d.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026e30000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\ba005e12-3139-4327-9f7a-9f2ea6a6c841.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026e50000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\0d06f79c-d0e6-4610-9a2b-d8f1a48f4252.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026de0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\50441041-9037-4c34-842c-4a8523e700da.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023a40000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\f12de547-df4d-4236-9129-baac054f90ab.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026db0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\2a6b5d0b-a2fc-4bdd-b3fe-6bbefb85b7e4.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023a00000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\073fb38f-0e69-479d-bca1-4f81ec9dcbf6.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026ee0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\51fdf16e-ecb9-4fa4-8469-76fc9a22293b.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026f10000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\57d7325c-8462-4866-a9ca-3f9228775fed.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026f30000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\c6bf01ba-05a7-4930-b8dd-7c5fd03e97ac.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026f50000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\fbd50850-4122-4fe3-a72e-fcbe58a0f196.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000023a70000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\e5a96c3d-2e95-42ea-ad11-9e3f77fdabd4.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026f90000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\31432802-7f43-4786-a8e0-71cd2588572a.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026fc0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\7c5b1d75-4145-4f69-b184-a8fb559fd417.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000027030000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\c234a47d-843f-4a61-889b-e1538e961da5.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000027050000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\caac49ab-d9d8-4f29-a409-2a9a30ae62af.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000270a0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\c74f120c-a2fd-45f4-8d64-4b4a27ede296.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000026fb0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\c20a0fa8-50ad-45ec-b66b-89e3b80e5e9d.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 00000000270f0000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\0124e21d-018c-4ce0-92a3-b9e205a76bc0.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000027140000 Library C:\ProgramData\PCDr\6426\AddOnDownloaded\ee4747a4-1d1b-42c1-8a8c-1de04bbb2379.dll (*** suspicious ***) @ C:\Program Files\My Dell\pcdrcui.exe [5656] (FILE NOT FOUND) 0000000027180000 Library C:\Users\Oogamasennin\Desktop\asd\gmer\gmer.exe (*** suspicious ***) @ C:\Users\Oogamasennin\Desktop\asd\gmer\gmer.exe [1696] 0000000000400000 ---- Disk sectors - GMER 2.1 ---- Disk \Device\Harddisk0\DR0 unknown MBR code ---- EOF - GMER 2.1 ----