GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-12-05 20:50:34
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\0000005f WDC_WD2000JS-00PDB0 rev.21.00M21
Running: 920z703t.exe; Driver: C:\DOCUME~1\PC\USTAWI~1\Temp\afrdikod.sys


---- System - GMER 1.0.15 ----

SSDT   B0D6F68C                                                                                 ZwClose
SSDT   B0D6F646                                                                                 ZwCreateKey
SSDT   B0D6F696                                                                                 ZwCreateSection
SSDT   B0D6F63C                                                                                 ZwCreateThread
SSDT   B0D6F64B                                                                                 ZwDeleteKey
SSDT   B0D6F655                                                                                 ZwDeleteValueKey
SSDT   B0D6F687                                                                                 ZwDuplicateObject
SSDT   B0D6F65A                                                                                 ZwLoadKey
SSDT   B0D6F628                                                                                 ZwOpenProcess
SSDT   B0D6F62D                                                                                 ZwOpenThread
SSDT   B0D6F664                                                                                 ZwReplaceKey
SSDT   B0D6F65F                                                                                 ZwRestoreKey
SSDT   B0D6F69B                                                                                 ZwSetContextThread
SSDT   B0D6F650                                                                                 ZwSetValueKey
SSDT   B0D6F637                                                                                 ZwTerminateProcess

---- User code sections - GMER 1.0.15 ----

.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!DialogBoxParamW          7E3747AB 5 Bytes  JMP 405D5505 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!CreateWindowExW          7E37D0A3 5 Bytes  JMP 406ADB24 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!DialogBoxIndirectParamW  7E382072 5 Bytes  JMP 407A725F C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!MessageBoxIndirectA      7E38A082 5 Bytes  JMP 407A7191 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!DialogBoxParamA          7E38B144 5 Bytes  JMP 407A71FC C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!MessageBoxExW            7E3A0838 5 Bytes  JMP 407A7062 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!MessageBoxExA            7E3A085C 5 Bytes  JMP 407A70C4 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!DialogBoxIndirectParamA  7E3A6D7D 5 Bytes  JMP 407A72C2 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text  C:\Program Files\internet explorer\iexplore.exe[596] USER32.dll!MessageBoxIndirectW      7E3B64D5 5 Bytes  JMP 407A7126 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----