GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-04-20 21:01:23 Windows 5.1.2600 Dodatek Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST9160821AS rev.3.ALB Running: g8id5zr3.exe; Driver: C:\DOCUME~1\User\USTAWI~1\Temp\pgliqpoc.sys ---- User code sections - GMER 1.0.15 ---- ÒuÛŠëÔÿÿÿÿwinlogonentry point in "ÒuÛŠëÔÿÿÿÿwinlogonentry point in "" section [0x0042F4A6] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\winlogon.exe[2268] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\winlogon.exe entry point in "ÒuÛŠëÔÿÿÿÿwinlogonentry point in "" section [0x0042F4A6] ÒuÛŠëÔÿÿÿÿwinlogonunknown last code section [0x00425000, 0x19000, 0xC00000E0] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\winlogon.exe[2268] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\winlogon.exe unknown last code section [0x00425000, 0x19000, 0xC00000E0] ÒuÛŠëÔÿÿÿÿservicesentry point in "ÒuÛŠëÔÿÿÿÿservicesentry point in "" section [0x0042F4A6] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\services.exe[2700] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\services.exe entry point in "ÒuÛŠëÔÿÿÿÿservicesentry point in "" section [0x0042F4A6] ÒuÛŠëÔÿÿÿÿservicesunknown last code section [0x00425000, 0x19000, 0xC00000E0] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\services.exe[2700] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\services.exe unknown last code section [0x00425000, 0x19000, 0xC00000E0] ---- Devices - GMER 1.0.15 ---- AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) ---- EOF - GMER 1.0.15 ----