GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2011-07-27 15:20:46 Windows 5.1.2600 Dodatek Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 WDC_WD3200AAKS-00L9A0 rev.01.03E01 Running: Gmer.exe; Driver: C:\DOCUME~1\Pawel\USTAWI~1\Temp\kweiifow.sys ---- System - GMER 1.0.15 ---- Code \??\C:\DOCUME~1\Pawel\USTAWI~1\Temp\catchme.sys pIofCallDriver ---- Kernel code sections - GMER 1.0.15 ---- .text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB51A13A0, 0x88C445, 0xE8000020] ? C:\WINDOWS\system32\Drivers\PROCEXP113.SYS Nie można odnaleźć określonego pliku. ! ? C:\DOCUME~1\Pawel\USTAWI~1\Temp\catchme.sys Nie można odnaleźć określonego pliku. ! ---- User code sections - GMER 1.0.15 ---- .text D:\programy\Mozilla 5.0\plugin-container.exe[144] USER32.dll!SetWindowLongA 77D3DED3 5 Bytes JMP 1068EDA6 D:\programy\Mozilla 5.0\xul.dll (Mozilla Foundation) .text D:\programy\Mozilla 5.0\plugin-container.exe[144] USER32.dll!SetWindowLongW 77D3DEF1 5 Bytes JMP 1068ED38 D:\programy\Mozilla 5.0\xul.dll (Mozilla Foundation) .text D:\programy\Mozilla 5.0\plugin-container.exe[144] USER32.dll!GetWindowInfo 77D3F122 5 Bytes JMP 104A5451 D:\programy\Mozilla 5.0\xul.dll (Mozilla Foundation) .text D:\programy\Mozilla 5.0\plugin-container.exe[144] USER32.dll!TrackPopupMenu 77D84F16 5 Bytes JMP 104A5A99 D:\programy\Mozilla 5.0\xul.dll (Mozilla Foundation) .text D:\programy\Mozilla 5.0\firefox.exe[1176] ntdll.dll!LdrLoadDll 7C9161CA 5 Bytes JMP 00401410 D:\programy\Mozilla 5.0\firefox.exe (Firefox/Mozilla Corporation)