GMER 2.1.19163 - http://www.gmer.net Rootkit scan 2014-01-03 22:51:31 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SAMSUNG_HD502HJ rev.1AJ10001 465,76GB Running: m57g1hli.exe; Driver: C:\Users\DrastiC\AppData\Local\Temp\fxliifoc.sys ---- User code sections - GMER 2.1 ---- .text D:\Program Files (x86)\Steam\Steam.exe[3060] C:\Windows\syswow64\KERNELBASE.dll!HeapCreate 00000000757b549c 5 bytes JMP 00000001000f0800 .text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[2628] C:\Windows\syswow64\KERNELBASE.dll!HeapCreate 00000000757b549c 5 bytes JMP 0000000100140800 .text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[2628] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 0000000076e21465 2 bytes [E2, 76] .text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[2628] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 0000000076e214bb 2 bytes [E2, 76] .text ... * 2 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2496] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076e21465 2 bytes [E2, 76] .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2496] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076e214bb 2 bytes [E2, 76] .text ... * 2 .text D:\Pobrane\OTL.exe[3728] C:\Windows\syswow64\PSAPI.dll!GetModuleInformation + 69 0000000076e21465 2 bytes [E2, 76] .text D:\Pobrane\OTL.exe[3728] C:\Windows\syswow64\PSAPI.dll!GetModuleInformation + 155 0000000076e214bb 2 bytes [E2, 76] .text ... * 2 ---- User IAT/EAT - GMER 2.1 ---- IAT C:\Windows\system32\wbem\wmiprvse.exe[2692] @ C:\Windows\system32\USER32.dll[GDI32.dll!GetRgnBox] [7ff7fd71674] ---- Threads - GMER 2.1 ---- Thread C:\Windows\System32\svchost.exe [4068:1052] 000007fef16b9688 ---- EOF - GMER 2.1 ----