GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-12-12 16:34:33 Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 SAMSUNG_HD080HJ/P rev.ZH100-34 Running: tf9g4c5y.exe; Driver: C:\DOCUME~1\Gliwice\LOCALS~1\Temp\awrcipow.sys ---- Kernel code sections - GMER 1.0.15 ---- init C:\WINDOWS\system32\drivers\senfilt.sys entry point in "init" section [0xB9CCDF80] init C:\WINDOWS\system32\drivers\egatebus.sys entry point in "init" section [0xBADA4320] init C:\WINDOWS\system32\DRIVERS\smccard.sys entry point in "init" section [0xBA5B8D58] ? C:\WINDOWS\system32\drivers\blzblk.sys The system cannot find the file specified. ! ---- User code sections - GMER 1.0.15 ---- .text C:\Documents and Settings\Gliwice\Local Settings\Application Data\GG\Application\ggapp.exe[164] ntdll.dll!LdrLoadDll 7C9163A3 5 Bytes JMP 00F7C859 C:\Documents and Settings\Gliwice\Local Settings\Application Data\GG\Application\xulrunner\xul.dll (GG application/GG Network S.A.) .text C:\Documents and Settings\Gliwice\Local Settings\Application Data\GG\Application\ggapp.exe[164] kernel32.dll!VirtualAlloc 7C809AE1 5 Bytes JMP 0176ED48 C:\Documents and Settings\Gliwice\Local Settings\Application Data\GG\Application\xulrunner\xul.dll (GG application/GG Network S.A.) .text C:\Documents and Settings\Gliwice\Local Settings\Application Data\GG\Application\ggapp.exe[164] kernel32.dll!MapViewOfFile 7C80B995 5 Bytes JMP 0176ED8E C:\Documents and Settings\Gliwice\Local Settings\Application Data\GG\Application\xulrunner\xul.dll (GG application/GG Network S.A.) .text C:\Documents and Settings\Gliwice\Local Settings\Application Data\GG\Application\ggapp.exe[164] GDI32.dll!CreateDIBSection 77F19E09 5 Bytes JMP 0176EDB5 C:\Documents and Settings\Gliwice\Local Settings\Application Data\GG\Application\xulrunner\xul.dll (GG application/GG Network S.A.) ---- EOF - GMER 1.0.15 ----