Author: Gruntkiller4000
Subject: Strange drivers
Posted: 04 June 2013 at 4:57am
Here is the log file:
uploads/46979/Log.zip
The next time I ran GMER in normal mode did the same as Safe mode. It picked up some entries then computer crash.
I also noticed a registry key "\??\C:\WINDOWS\System32\winlogon.exe" in AuthorizedApplications\List in the SharedAccess. I am thinking this may be something to do with the rootkit.
Edited by Gruntkiller4000 - 4 hours 58 minutes ago at 5:02am
Subject: Strange drivers
Posted: 04 June 2013 at 4:57am
Here is the log file:
uploads/46979/Log.zip
The next time I ran GMER in normal mode did the same as Safe mode. It picked up some entries then computer crash.
I also noticed a registry key "\??\C:\WINDOWS\System32\winlogon.exe" in AuthorizedApplications\List in the SharedAccess. I am thinking this may be something to do with the rootkit.
Edited by Gruntkiller4000 - 4 hours 58 minutes ago at 5:02am