GMER 2.2.19882 - http://www.gmer.net
Rootkit scan 2016-05-12 17:00:10
Windows 6.2.9200  x64 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-5 PLEXTOR_PX-128M6M rev.1.02 119,24GB
Running: evjmrb99.exe; Driver: C:\Users\mat\AppData\Local\Temp\kgkdyaoc.sys


---- Threads - GMER 2.2 ----

Thread  C:\WINDOWS\system32\csrss.exe [4968:2872]                                                                                          fffff961cf7e4060

---- Registry - GMER 2.2 ----

Reg     HKLM\SYSTEM\CurrentControlSet\Control\MUI\StringCacheSettings@StringCacheGeneration                                                18
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed                                                  -144975884
Reg     HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\e4f89c4a74c2                                                        
Reg     HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Upgrade\LocalRadioSettings                                                          
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch                                                                    2359
Reg     HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeEstimated                                                0x67 0x58 0x7C 0x37 ...
Reg     HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeHigh                                                     0x67 0xC0 0x40 0x99 ...
Reg     HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeLow                                                      0x67 0xF0 0xB7 0xD5 ...
Reg     HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeTickCount                                                0xA3 0x05 0xF4 0x03 ...
Reg     HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Notifications\Current\Windows.SystemToast.SecurityAndMaintenance\1538               
Reg     HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Notifications\Current\Windows.SystemToast.SecurityAndMaintenance\1538@ImageFileUri  file://C:\Users\mat\AppData\Local\Microsoft\Windows\ActionCenterCache\{A3C06C08-C8E4-498D-AA47-909DB6A0FAAA}.png
Reg     HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Notifications\Current\Windows.SystemToast.SecurityAndMaintenance\1539               
Reg     HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Notifications\Current\Windows.SystemToast.SecurityAndMaintenance\1539@ImageFileUri  file://C:\Users\mat\AppData\Local\Microsoft\Windows\ActionCenterCache\{93B7419B-7098-461F-A8FC-978209855710}.png
Reg     HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search@JumpListChangedAppIds                                                        Chrome.UserData.Profile1?Microsoft.Windows.Photos_8wekyb3d8bbwe!App?Microsoft.Windows.ControlPanel?

---- EOF - GMER 2.2 ----