GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-07-13 16:20:47
Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 ST932032 rev.0001 298,09GB
Running: 59hrzs8u.exe; Driver: C:\DOCUME~1\Agent\USTAWI~1\Temp\uxtdypow.sys


---- Kernel code sections - GMER 2.1 ----

?               68061579.sys                                                                                      Nie można odnaleźć określonego pliku. !

---- User code sections - GMER 2.1 ----

.text           C:\Program Files\Mozilla Firefox\firefox.exe[928] ntdll.dll!LdrLoadDll                            7C91632D 5 Bytes  JMP 0154D180 C:\Program Files\Mozilla Firefox\xul.dll
.text           C:\Program Files\Mozilla Firefox\firefox.exe[928] kernel32.dll!lstrlenW + 43                      7C809AEC 7 Bytes  JMP 01896B9C C:\Program Files\Mozilla Firefox\xul.dll
.text           C:\Program Files\Mozilla Firefox\firefox.exe[928] kernel32.dll!MapViewOfFileEx + 6A               7C80B9A0 7 Bytes  JMP 01896B79 C:\Program Files\Mozilla Firefox\xul.dll
.text           C:\Program Files\Mozilla Firefox\firefox.exe[928] kernel32.dll!ValidateLocale + B1C8              7C8449C8 7 Bytes  JMP 0155F84B C:\Program Files\Mozilla Firefox\xul.dll
.text           C:\Program Files\Mozilla Firefox\firefox.exe[928] GDI32.dll!SetDIBitsToDevice + 20A               77F19E14 7 Bytes  JMP 01896AFA C:\Program Files\Mozilla Firefox\xul.dll
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!GetSysColor                                      7E368E78 5 Bytes  JMP 00418ED0 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!GetSysColorBrush                                 7E368EAB 5 Bytes  JMP 00418F40 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!SetScrollInfo                                    7E369056 7 Bytes  JMP 00418DC0 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!GetScrollInfo                                    7E37DFE2 7 Bytes  JMP 00418D10 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!ShowScrollBar                                    7E37F2F2 5 Bytes  JMP 00418E90 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!GetScrollPos                                     7E37F704 5 Bytes  JMP 00418D50 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!SetScrollPos                                     7E37F750 5 Bytes  JMP 00418E00 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!GetScrollRange                                   7E37F787 5 Bytes  JMP 00418D80 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!SetScrollRange                                   7E37F99B 5 Bytes  JMP 00418E40 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\WINDOWS\SMINST\Scheduler.exe[2256] USER32.dll!EnableScrollBar                                  7E3B8005 7 Bytes  JMP 00418CD0 C:\WINDOWS\SMINST\Scheduler.exe
.text           C:\Program Files\Mozilla Firefox\plugin-container.exe[3280] USER32.dll!GetWindowInfo              7E37C49C 5 Bytes  JMP 1045E982 C:\Program Files\Mozilla Firefox\xul.dll
.text           C:\Program Files\Mozilla Firefox\plugin-container.exe[3280] USER32.dll!GetMenuContextHelpId + 1A  7E3B5319 7 Bytes  JMP 1045EE7F C:\Program Files\Mozilla Firefox\xul.dll

---- Devices - GMER 2.1 ----

AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass0                                                           SynTP.sys
AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass0                                                           eabfiltr.sys

---- Disk sectors - GMER 2.1 ----

Disk            \Device\Harddisk0\DR0                                                                             unknown MBR code

---- EOF - GMER 2.1 ----