GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2014-03-25 18:21:55 Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4 Maxtor_6Y080P0 rev.YAR41BW0 76,34GB Running: sxkdvvow.exe; Driver: C:\DOCUME~1\Justyna\USTAWI~1\Temp\uxddqpog.sys ---- Kernel code sections - GMER 2.1 ---- ? ffewhfye.sys Nie można odnaleźć określonego pliku. ! ---- User code sections - GMER 2.1 ---- .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] ntdll.dll!LdrLoadDll 7C915CD3 5 Bytes JMP 10001FD9 C:\Program Files\Mozilla Firefox\mozglue.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] kernel32.dll!lstrlenW + 43 7C809AEC 7 Bytes JMP 023F4104 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] kernel32.dll!MapViewOfFileEx + 6A 7C80B9A0 7 Bytes JMP 023F40E1 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] kernel32.dll!ValidateLocale + B138 7C844930 7 Bytes JMP 01AC3255 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] GDI32.dll!SetDIBitsToDevice + 20A 77F19E14 7 Bytes JMP 023F4062 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] USER32.dll!GetWindowInfo 7E36DE7C 5 Bytes JMP 021C9CE9 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] WS2_32.dll!closesocket 71A53E2B 5 Bytes JMP 01035170 C:\Program Files\AdFender\AFHook32.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] WS2_32.dll!WSAIoctl 71A53EC0 5 Bytes JMP 01035230 C:\Program Files\AdFender\AFHook32.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] WS2_32.dll!connect 71A54A07 5 Bytes JMP 01034B90 C:\Program Files\AdFender\AFHook32.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] WS2_32.dll!send 71A54C27 5 Bytes JMP 01034D30 C:\Program Files\AdFender\AFHook32.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] WS2_32.dll!WSASend 71A568FA 5 Bytes JMP 01034F00 C:\Program Files\AdFender\AFHook32.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] WS2_32.dll!getpeername 71A60B68 5 Bytes JMP 01034C70 C:\Program Files\AdFender\AFHook32.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[1972] WS2_32.dll!WSAConnect 71A60C81 5 Bytes JMP 01034BF0 C:\Program Files\AdFender\AFHook32.dll ---- Devices - GMER 2.1 ---- AttachedDevice \Driver\Tcpip \Device\Ip tStLib.sys Device \Driver\usb_rndis \Device\{4B672EFB-EF98-4784-931F-E4B418A474BC} RNDISMP.SYS AttachedDevice \Driver\Tcpip \Device\Tcp tStLib.sys AttachedDevice \Driver\Tcpip \Device\Udp tStLib.sys AttachedDevice \Driver\Tcpip \Device\RawIp tStLib.sys AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys ---- EOF - GMER 2.1 ----