GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-11-02 08:28:11
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST9320325AS rev.0002SDM1
Running: ub6bk7hw.exe; Driver: C:\DOCUME~1\Bartek\USTAWI~1\Temp\pwryaaow.sys


---- System - GMER 1.0.15 ----

SSDT            Lbd.sys (Boot Driver/Lavasoft AB)                                                                 ZwCreateKey [0xB80F887E]
SSDT            Lbd.sys (Boot Driver/Lavasoft AB)                                                                 ZwSetValueKey [0xB80F8BFE]

---- User code sections - GMER 1.0.15 ----

.text           C:\Program Files\Gadu-Gadu 10\gg.exe[560] USER32.dll!BeginPaint                                   7E378FE9 5 Bytes  JMP 10539EA0 C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll
.text           C:\Program Files\Gadu-Gadu 10\gg.exe[560] USER32.dll!EndPaint                                     7E378FFD 5 Bytes  JMP 10539F10 C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll
.text           C:\Program Files\Mozilla Firefox\plugin-container.exe[1496] USER32.dll!DefWindowProcA + 11A       7E37C298 7 Bytes  JMP 105DAAB0 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\plugin-container.exe[1496] USER32.dll!SetWindowLongA + 19        7E37C2B6 7 Bytes  JMP 105DAA3F C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\plugin-container.exe[1496] USER32.dll!GetWindowInfo              7E37C49C 5 Bytes  JMP 10424559 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\plugin-container.exe[1496] USER32.dll!GetMenuContextHelpId + 1A  7E3B5319 7 Bytes  JMP 10424BB1 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\firefox.exe[1552] ntdll.dll!LdrLoadDll                           7C91632D 5 Bytes  JMP 01495B00 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\firefox.exe[1552] kernel32.dll!lstrlenW + 43                     7C809AEC 7 Bytes  JMP 016D7B58 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\firefox.exe[1552] kernel32.dll!MapViewOfFileEx + 6A              7C80B9A0 1 Byte  [E9]
.text           C:\Program Files\Mozilla Firefox\firefox.exe[1552] kernel32.dll!MapViewOfFileEx + 6A              7C80B9A0 7 Bytes  JMP 016D7B35 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\firefox.exe[1552] kernel32.dll!ValidateLocale + B130             7C844958 7 Bytes  JMP 0149EF12 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\firefox.exe[1552] GDI32.dll!SetDIBitsToDevice + 20A              77F19E14 7 Bytes  JMP 016D7AB6 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)

---- Devices - GMER 1.0.15 ----

AttachedDevice  \Driver\Tcpip \Device\Tcp                                                                         aswRdr.SYS (avast! TDI RDR Driver/AVAST Software)

---- EOF - GMER 1.0.15 ----