GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-07-14 16:00:42 Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 FUJITSU_ rev.0040 Running: 7pqowpfd.exe; Driver: C:\Users\JAKKOL~1\AppData\Local\Temp\kwtiraob.sys ---- Kernel code sections - GMER 1.0.15 ---- .text C:\Windows\system32\DRIVERS\tos_sps32.sys section is writeable [0x8A751480, 0x3C939, 0xE8000020] .dsrt C:\Windows\system32\DRIVERS\tos_sps32.sys unknown last section [0x8A792900, 0x3CA, 0x48000040] .text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x8E40C000, 0x1FB0FA, 0xE8000020] .text C:\Windows\system32\DRIVERS\atksgt.sys section is writeable [0x9DEC9300, 0x3AE88, 0xE8000020] .text C:\Windows\system32\DRIVERS\lirsgt.sys section is writeable [0x9DF0C300, 0x1B7E, 0xE8000020] ---- EOF - GMER 1.0.15 ----