GMER 1.0.15.15281 - http://www.gmer.net Rootkit scan 2010-07-02 08:01:06 Windows 6.0.6002 Service Pack 2 Running: gmer.exe; Driver: C:\Users\Smashley\AppData\Local\Temp\kwroruob.sys ---- Devices - GMER 1.0.15 ---- AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF Dynamic/Microsoft Corporation) AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF Dynamic/Microsoft Corporation) AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) ---- Registry - GMER 1.0.15 ---- Reg HKLM\SOFTWARE\Classes\Licenses\Visible Advantage\{B0000167-50CF-11D1-A140-0000F802C250}@ The component {B0000167-50CF-11D1-A140-0000F802C250} is licensed for use on this machine. Any modification or duplication of this information is in direct violation of Canadian and international copyright laws. 9b64005c0fa000019b8510a858abba675bf8a Reg HKLM\SOFTWARE\Classes\Licenses\Visible Advantage\{B5A0FEC8-888C-4A31-8154-C46A3B57FC91}@ The component {B5A0FEC8-888C-4A31-8154-C46A3B57FC91} is licensed for use on this machine. Any modification or duplication of this information is in direct violation of Canadian and international copyright laws. http://www.simpliciti.biz/sim_ld_purchase.htm9b64005c0fa000019b7108788b704c79e054a ---- EOF - GMER 1.0.15 ----