GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-11-02 12:52:28
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD10 rev.15.0 931,51GB
Running: 75n6gb7t.exe; Driver: C:\Users\Konrad\AppData\Local\Temp\agrdapog.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                               fffff800033fa000 45 bytes [00, 00, 16, 02, 4E, 74, 66, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 575                                                               fffff800033fa02f 29 bytes [00, 01, 00, 06, 00, 00, 00, ...]

---- User code sections - GMER 2.1 ----

.text     D:\Program Files (x86)\FreeAlarmClock\FreeAlarmClock.exe[2096] C:\Windows\syswow64\PSAPI.dll!GetModuleInformation + 69           0000000074e41465 2 bytes [E4, 74]
.text     D:\Program Files (x86)\FreeAlarmClock\FreeAlarmClock.exe[2096] C:\Windows\syswow64\PSAPI.dll!GetModuleInformation + 155          0000000074e414bb 2 bytes [E4, 74]
.text     ...                                                                                                                              * 2
.text     C:\Windows\system32\PnkBstrA.exe[1872] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                   0000000074e41465 2 bytes [E4, 74]
.text     C:\Windows\system32\PnkBstrA.exe[1872] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                  0000000074e414bb 2 bytes [E4, 74]
.text     ...                                                                                                                              * 2
.text     C:\Program Files (x86)\Skype\Phone\Skype.exe[5900] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                       0000000074e41465 2 bytes [E4, 74]
.text     C:\Program Files (x86)\Skype\Phone\Skype.exe[5900] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                      0000000074e414bb 2 bytes [E4, 74]
.text     ...                                                                                                                              * 2

---- Files - GMER 2.1 ----

File      C:\Users\Konrad\AppData\Local\Mozilla\Firefox\Profiles\619l8zan.default\cache2\entries\42684B061E7AB7BB9267D6306FFD5E8435969EBE  0 bytes
File      C:\Users\Konrad\AppData\Local\Mozilla\Firefox\Profiles\619l8zan.default\cache2\entries\558C25A5156ECF0B8A9384116B0D94EEF6EDF28A  0 bytes
File      C:\Users\Konrad\AppData\Local\Mozilla\Firefox\Profiles\619l8zan.default\cache2\entries\CACE0F7AF76B781ECCC0C4FB178E2EF228201BCE  0 bytes
File      C:\Users\Konrad\AppData\Local\Mozilla\Firefox\Profiles\619l8zan.default\cache2\entries\AE028111A6CF243FAE3A738917C4438A92546DFB  0 bytes
File      C:\Users\Konrad\AppData\Local\Mozilla\Firefox\Profiles\619l8zan.default\cache2\entries\68045CEF252D5314C5EA8ED5D8EE4175B2B5AD49  0 bytes
File      C:\Users\Konrad\AppData\Local\Mozilla\Firefox\Profiles\619l8zan.default\cache2\entries\711875B9BB062109AB57BAFAD1300AC307F9A833  264 bytes

---- EOF - GMER 2.1 ----