GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2016-06-27 01:00:44 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-1 rev. 0,00MB Running: rvpydzvj.exe; Driver: C:\Users\rrs\AppData\Local\Temp\pxldapow.sys ---- Disk sectors - GMER 2.1 ---- Disk \Device\Harddisk1\DR1 sector 0: rootkit-like behavior ---- Threads - GMER 2.1 ---- Thread C:\Windows\System32\svchost.exe [1400:1680] 000007fefb3b331c Thread C:\Windows\System32\svchost.exe [1400:1812] 000007fefa6b59a0 Thread C:\Windows\System32\svchost.exe [1400:3604] 000007fef78b44e0 Thread C:\Windows\System32\svchost.exe [1400:3620] 000007fef79330f0 Thread C:\Windows\System32\svchost.exe [1400:3648] 000007fef7932c20 Thread C:\Windows\System32\svchost.exe [1400:3780] 000007fefcf420c0 Thread C:\Windows\System32\svchost.exe [1400:3784] 000007fefcf426a8 Thread C:\Windows\System32\svchost.exe [1400:3788] 000007fefad314a0 Thread C:\Windows\System32\svchost.exe [1400:3844] 000007fefcf429dc Thread C:\Windows\System32\svchost.exe [1400:3852] 000007fefcf429dc Thread C:\Windows\System32\svchost.exe [1400:4064] 000007fefa74a2b0 Thread C:\Windows\System32\svchost.exe [1400:3764] 000007fef90189b8 Thread C:\Windows\System32\svchost.exe [1400:4024] 000007fef0ef8a4c Thread C:\Windows\System32\svchost.exe [1400:4672] 000007fef78cd710 Thread C:\Windows\System32\svchost.exe [3184:4568] 000007fef21c9688 ---- EOF - GMER 2.1 ----