GMER 2.2.19882 - http://www.gmer.net Rootkit scan 2016-11-19 16:40:12 Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\0000003c ST1000LM014-SSHD-8GB rev.LVD3 931,51GB Running: dfqbn1u1.exe; Driver: C:\Users\PAWE~1\AppData\Local\Temp\kxldrpow.sys ---- Threads - GMER 2.2 ---- Thread C:\WINDOWS\system32\csrss.exe [760:920] ffffc42555a16c20 ---- Services - GMER 2.2 ---- Service C:\WINDOWS\System32\drivers\L1C63x64.sys (*** hidden *** ) [MANUAL] L1C <-- ROOTKIT !!! ---- Registry - GMER 2.2 ---- Reg HKLM\SYSTEM\CurrentControlSet\Control\BackupRestore\FilesNotToSnapshot@OfficeODC ?????????????????????????r???3???????????????????? ???????????????????????????????????????????????? ??? ???%???%???%???%???%???%???%???%???(???(???(???(???(???(???(???)???)???)???)???)?:?)???)???)???)???)???)???)???)???)???)???)???)???)???)???*???+???+???+???+???+???-???-???.???.???1???=???=???=???A???B???B???B???B???B???C???C???C???C???C???C???D???D???D???D???H?A?H???H???H???H???H???H???H???H???H???H???H???I???I?C?I???I???I???I???I???I???I???I???I???I???I???I???I???O???O???O????? ??????????????????????????????N??????????? ?????N??????????e??%SystemRoot%\system32\AppReadiness.dll??????? ????????????????????????"?????????????????? ????????????????????????$????????? ???????e???? ????????????????????????????L???????????????????b??????`?W?`??%SystemRoot%\system32\LogFiles\WMI\RtBackup\*.*?????????????????????????????????????????????????????????????????????????????????\System Volume Information\FVE2.{e40ad34d-dae9-4bc7-95bd-b16218c10f72}.*????????????????????\System Volume Information\FVE2.{c9ca54a3-6983-46b7-868 Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{55E58BFD-4F5A-472B-A9C1-5FC8D521D9F1}\Connection@Name Reusable ISATAP Interface {55E58BFD-4F5A-472B-A9C1-5FC8D521D9F1} Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed 1237230250 Reg HKLM\SYSTEM\CurrentControlSet\Services\aswRvrt\Parameters\Instup_14734119416252280@SetupOperations ???g?????g?h?h?h?h???????????????????????????s??????????????????????????????????? ???????g???????????g???????? ??????????????????????????g???-??Reverted?