GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-12-29 01:00:42
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD50 rev.01.0 465,76GB
Running: 675z9cfj.exe; Driver: C:\Users\Bartek\AppData\Local\Temp\awrdipob.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                                                     fffff800023a6000 45 bytes [69, 00, 6B, 00, 20, 00, 50, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 574                                                                                     fffff800023a602e 17 bytes [63, 00, 7A, 00, 6F, 00, 6E, ...]

---- User code sections - GMER 2.1 ----

.text     C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE[1960] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                         0000000076cf1465 2 bytes [CF, 76]
.text     C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE[1960] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                        0000000076cf14bb 2 bytes [CF, 76]
.text     ...                                                                                                                                                    * 2
.text     C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE[2440] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69   0000000076cf1465 2 bytes [CF, 76]
.text     C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE[2440] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155  0000000076cf14bb 2 bytes [CF, 76]
.text     ...                                                                                                                                                    * 2

---- EOF - GMER 2.1 ----