GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2014-10-09 14:59:51 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk1\DR1 -> \Device\00000066 SAMSUNG_ rev.1AC0 232,89GB Running: 4mix54u7.exe; Driver: C:\Users\Mati\AppData\Local\Temp\pxldqpow.sys ---- User code sections - GMER 2.1 ---- .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!SetWindowPos 000000007588cdb4 5 bytes JMP 000000016e7d9120 .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!ShowWindow 0000000075890dbe 5 bytes JMP 000000016e7d90b0 .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!SetFocus 0000000075891b99 5 bytes JMP 000000016e7d9100 .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 0000000075891d34 5 bytes JMP 000000016e7d8fe0 .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!SetActiveWindow 0000000075892890 5 bytes JMP 000000016e7d9170 .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!BringWindowToTop 0000000075897ba7 5 bytes JMP 000000016e7d9010 .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!SwitchToThisWindow 00000000758c908c 5 bytes JMP 000000016e7d9040 .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!ShowWindowAsync 00000000758e7f27 2 bytes JMP 000000016e7d9060 .text C:\Program Files (x86)\Origin\Origin.exe[2956] C:\Windows\syswow64\USER32.dll!ShowWindowAsync + 3 00000000758e7f2a 2 bytes [EF, F8] .text C:\Program Files (x86)\Skype\Phone\Skype.exe[3772] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075de1465 2 bytes [DE, 75] .text C:\Program Files (x86)\Skype\Phone\Skype.exe[3772] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075de14bb 2 bytes [DE, 75] .text ... * 2 ---- Files - GMER 2.1 ---- File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\EB54C179789C64E1332B3FABD4E8F6E2BD031AC8 3116 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\9669D97BDDBB916C5D2AFF5B03B3E4119864643F 3489 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\26EE4C266B55146DB0B3CF198F3C0716F87D9A31 434 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\55DFE0B0A23173F343FE3DCCCAA4CB039C39B459 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\F23E66DE380D1DE640DB79B076E71A25A8EBD864 4749 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\4B7196D2EA9BF4CB39016A98FEF04333CDA64A84 5387 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\D71EC70998564BD2B26E0FFDDC752E46D2617DDD 5677 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\771F715E5F6792453EE4BE124BBFB2A01A0BC189 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\4152C6A4900BFA74548F0DB7B55D39541AAE0970 6287 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\A7C30B89995F15126E009F0E79F93AC4505FCD1D 4903 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\FA69448F9CDC6617BF486C5B5566C6D9DFA9C44B 3890 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\BA446F72DBC1B4C16A7E33842CC591ECE44DE9F4 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\422136264F5709E5E657EA4D12B6B700155BB5B1 5797 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\4234CA0C7B29A4E90F6FBA2473C59C532915A1D7 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\E82A52BE651676D18546C444487F8FE66FC1296D 4012 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\0F5FB018E68F10B49F20012E352654BF7DF28219 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\3FF1EE6E1266FD450FCDB640CC6D1BA150F609AA 3886 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\128CA7BFF6DDFD8BC82C35A8344525BDA61759C1 5236 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\004F97DDFBD0B09685EE9B39E6EFB072D5452510 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\3E734F472B7659D11E68C935CF8CC0E8805A58D0 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\01F2BA9AADDD16FF3892468EB947CB3BE1943B00 4402 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\F92B455D5FCAC3C7D161FD5BA7FFB46C532040A0 3482 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\4912D1DA332B717A8CF32F00915FA668F40515F2 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\DDE88E9B53F80FA5D7D46B347F04FE86A1943791 3654 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\42D51525470E06CFAC89532FC5FB069880A62258 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\C7041D2C4398BE8176B93E5678C2170F1CE5B192 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\621D3675FC900657F68F203CBE61AA9B6CB8B15D 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\813101BCD837E20EC8D8A555807669CCA5865EEB 0 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\31910AE4C5C1B2DAEABA25A7CF903E9EFD2CC768 6173 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\F2A6DCCDC1668AD381BB17A30B45C9CDAD74EDE5 4901 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\8917B7528C522863F83FFED59F69E8258453B5CC 5012 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\C2D3CBC905331507E41A052C8FF3A68C0145C8BB 6159 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\C2E3CF1035E694F32DBD659A250ACA5FDBC3303B 18068 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\C9AD52D12EAE6E0B9C3F2C487BEAE3BE0B8D6DCA 6608 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\5A6339B766E6DA9F72A39F61FE051B15DE3561B0 4945 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\7A1108AF1C5E0BF6B34C4B5DAE58AFBF1A26FA6E 4189 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\43470481972AB12E98C5329F88C022FE513A06DE 5279 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\596D4033E43C4CB1708E63D7E6B7E313E397D3AF 5213 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\F0638818F56C3AB186A9CC7E9092102B40DDBBC3 1156 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\958274767093EB4AA48973F2B966CE654E8A89E6 382 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\9C876B56013DC54FA7EBFF3CE2AFAE6B74F4C3BB 1106 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\0A34F65374D3FBF53529DFEB5C5E0A9E045E9CE1 4747 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\B08EA3EB8A0B6CA8BCA5A9F3C28CD1FCB56255DD 873 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\0640427D355372B9E00D3B14D49979A2F7482764 3507 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\C4A9B912564F37CB2ECE2A617F3DC70E753FB873 3890 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\39333D5FF37345190E620A133D3275372C25464F 3611 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\3FC887223D8794E712762A3C2F11CEF0AD552B04 4041 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\F0383C98EF550F9CA941D5D2BE7EAE2AC4E3312D 44157 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\411C00C13491AF0A36A3BB0505E4AE40C9CF6CE1 12334 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\1D4D3E51BDB1FFDA41858A608292AAAC754377CC 4115 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\6B0101F67874F318F37EDB5DA08E178C4C086B46 17480 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\7E89EE719699AEEC54FC5A86883DB577CA5999D9 3953 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\857328B23066BF0CA6A7B88D93C6F6B16040C212 6134 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\199AEA54D359C515492B31520EC21A2A12F3A3B7 4947 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\62A7FA77241B95C973F2314F7B0DFDE734F7493B 4901 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\F2FFDDD3B85A42867DB96318641BF6F0BE160CEB 4452 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\E7C715CD1899B968564F7F4449A52700D93CB3E5 3861 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\0E71BD58CA03D6D03DD4A715F57B10B75B59E962 4822 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\4F52792B60673133E5B5C621DA8BA8BB3330315C 9699 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\377699E12C297B0CDDD0DEE7891105D206EE50AD 6287 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\A391DFD8BD891FC4B5BBAEC7A0B3234913C757D8 4140 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\E626D328B3C629D0011700615D508BB9EDA53D34 554 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\2EA175F61E2FEA57578E420DCAC17BB3C7105399 4945 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\E7573DCC6371F8E489E9CFC4ED5BEB865C4BF8F2 4254 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\DE1885FED190B8FECE6726C7057DD8FC6B55922D 2031 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\DE4435BC242E23DF26B3667C922F5AF236B196A5 10319 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\176C159B815FA21E7827F977AC83395BB6807D69 6351 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\4952C54AB386C0CEA2C4A41CA9CE1B815A2A813E 2176 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\436EF9AADF74EA33E92494C3FC8FA147378A5B1A 5389 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\B6DFC65A9EC78A836A83F0F317FE22D46B5339ED 1823 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\E474E774458CC7B745D1C82DDB0ADBF715F5FCF0 2869 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\F7EFC780D37B0F1B3A48EDC5C08AB8D492814E60 3655 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\F2544CD469F875DB22A4224ACD566119C80B126C 39517 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\1EB5C192F0E6665311AB70562F7E47C0955B9FA6 6758 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\2E144327C203F2B41CC4A7823D6461531C270929 6158 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\41FDE10C8486466858A409DE6F820E62097BFB5A 3906 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\579FDE0CB5E909C99818ACB218FF154086A2DC1F 5765 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\2182343C46A5937D985A44FF715145EF55DD09EE 4096 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\93521E08114CF964A420058D621DE0023D237C4B 4043 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\0EE4C91BA76800DA7224BEDB17C31F3E3F1EE494 34167 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\608C9C7BC4028D5FD18FF0738B90181DFC56AB66 13867 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\CE625A9A407F08DFCF7E8C86FD720691D39633F1 4947 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\2C7C8029202BA73657066CBC42E4E3C57DD6F04A 3292 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\8A82CA422D2D9AFCBFA9236933BA6706FEEB987A 5185 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\3E0749CC346092A8E5CB1BED4E1E1CEEAEF90AF2 678 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\7A27D4A50B8851B636E345ADDE4A559D1BB80FE9 4901 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\04E8470EF6AA7B612E284DF7206C148F0F8A6B63 6053 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\04F95CE97A0F44C57E85D22F006B7ACCAD49C1B1 1594 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\179CF938E44CCA38743FAB379AF2A5BDA69C1E49 1733 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\195AFC30E726DDC01FBC24022B09B248CAA3CEBC 1028 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\38CA98A6CFB10DE15F8EC9346DC32F44D3420DE5 5841 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\35AB1176C4A34DC5FEB03657B1047D488FD887FA 4532 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\10FEC1E864E75754A46930378BEA67F106AFD8AA 24476 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\C292A22C328F0E4473E787065A84289F6BC77B0A 5580 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\C16EC329134E9F6FC0FA1931F0197BBDBC8511DC 5678 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\807F0F3A9BC81BAAB6388B5D63AAB203DF2B7F67 4080 bytes File C:\Users\Mati\AppData\Local\Mozilla\Firefox\Profiles\dmzewxk5.default\cache2\entries\2A40F8F699AD6F9B4663FBEBAA6E2529AF81CB8C 4013 bytes ---- EOF - GMER 2.1 ----