buvedom

Good day, Malware TEAM I have this suspicious file keeps detecting with Malwarebytes and after I deleted it, once I restart my pC it is still occurred and detecting it. so I've checked it and convert it to .txt file and I saw a suspicious code in there. I'll paste here some of the code.... >>start<< (€ ªƒ ` Ì€ Þ€ ð€ ü€ $ < N b t ‚ š ² Æ Þ ö ‚ ‚ 8‚ F‚ \‚ |‚ ”‚ ²‚ Ê‚ Ú‚ ð‚ ƒ ƒ ƒ :ƒ Rƒ hƒ xƒ ’ƒ ¸ƒ Òƒ îƒ øƒ „ pIoDeleteDevice XIoCreateDevice _ _purecall ¬ ExFreePoolWithTag ¹KeInitializeMutex NKeWaitForSingleObject KeReleaseMutex fRtlCompareMemory ‹ ExAllocatePool EKeTickCount õKeQueryTimeIncrement cIoCreateSymbolicLink µKeInitializeEvent ÌPsCreateSystemThread rIoDeleteSymbolicLink hObReferenceObjectByHandle ƒZwClose ¢MmGetSystemRoutineAddress ,KeSetEvent OIofCompleteRequest ´MmMapLockedPagesSpecifyCache ÖPsGetCurrentProcessId PsLookupProcessByProcessId =KeStackAttachProcess 3IoAllocateMdl ÅMmProbeAndLockPages ¦MmIsAddressValid ÕMmUnlockPages …IoFreeMdl JKeUnstackDetachProcess xObfDereferenceObject 2 ZwTerminateProcess ÉZwOpenProcess 6PsTerminateSystemThread ùRtlInitUnicodeString ntoskrnl.exe ¦RtlUnicodeToMultiByteN JRtlAnsiCharToUnicodeChar F _allmul S _except_handler3 • memcpy „ 0"080C0U0`0r00—0Ò0ç0í0ù0ÿ01A1I1Q1m1s11…1Ž1Æ1Ò1â122<2I2O2U2h2n2™2¨2Ë2Õ2è2d3Š3Â3é394Z4s4Ð45=5Q5j5«5Ö5æ5*6M6m6–6»6Ô6ô6 717 ‘2˜2®2´23:3? 3E3e3k3~3‰33¶3À3ý3"4Q444¡4¦4¬4¸4Ê4Ö4ô4û4505<5@5D5H5s5£5À5ÿ5G6N6ô6ø6ü6 77777777 7$7˜7è7&8ç89&9}9»9ó9ú9*:y:í:˜;J<•<×<a=Á=ô=¸?Ö?Û? 0 À 0W0†0˜0¯0»0Û0ÿ0*141=1g1´1»1n2u2–2›2,3ä3õ34`4v5}5©5°566g66ø6–7 7¨7±7·7Á7É7Ò7×7ä7ê7ï7ø7ý788*8†8–8Ó8ö8 9"9*90969<9B9H9N9T9Z9`9f9l9r9x9~9„9Š99–9œ9¢9¨9®9 ´9º9À9Æ9Ì9Ò9Ø9Þ9ä9ê9ð9>F> @ 4 Ã1>5ç5ü56¾8 9ê9š=ž=¢=¦=ª=®=²=¶=¹>æ>°?Å?ì? P D +34I4¢4B5 888888"8&8å899!9/9>9Æ9å9: ;¦;¬;²;¸;À;Ì;Ð; ` < 0è0ô0|1ˆ1˜1 1¤1¨1¬1°1 ´1ä1è182<2@2D2„2ˆ22<3@3L3P3 >>end<< ...there it is, I dont much understand what that is but I think there is sumthing fishy about that code. I hope you could help me. Although that .sys file not bothering my everyday life, but I know for some reason in the future time it will make a huge effect. LIKE ZERO-DAY ^_^, regards and GOD bless you all. ~R.u.o.K gkernel1.txt