GMER 2.1.19155 - http://www.gmer.net Rootkit scan 2013-03-22 00:57:09 Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 ST98823A rev.7.24 74,53GB Running: whb7eg5v.exe; Driver: C:\DOCUME~1\BEATAS~1\USTAWI~1\Temp\uxtdqpow.sys ---- Devices - GMER 2.1 ---- AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 eabfiltr.sys ---- Disk sectors - GMER 2.1 ---- Disk \Device\Harddisk0\DR0 unknown MBR code ---- Files - GMER 2.1 ---- File C:\WINDOWS\$NtUninstallKB62280$\384283566 0 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278 0 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\@ 2048 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\cfg.ini 226 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\Desktop.ini 4608 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\L 0 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\L\00000004.@ 218 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\L\201d3dde 223 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\L\4cce1f70 2045 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\L\76603ac3 0 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\L\priknwdy 62976 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\twl.dll 0 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\U 0 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\U\00000001.@ 1536 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\U\00000002.@ 224768 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\U\00000004.@ 1024 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\U\80000000.@ 66560 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\U\80000004.@ 1024 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\U\80000032.@ 96768 bytes File C:\WINDOWS\$NtUninstallKB62280$\485945278\version 730 bytes ---- EOF - GMER 2.1 ----