GMER 1.0.15.15640 - http://www.gmer.net
Rootkit scan 2011-07-13 00:58:16
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-3 WDC_WD1600JS-00MHB0 rev.02.01C03
Running: j1wkgm0t.exe; Driver: C:\DOCUME~1\ALEFAZ~1\USTAWI~1\Temp\pxtdqpow.sys


---- Kernel code sections - GMER 1.0.15 ----

.text  C:\WINDOWS\system32\DRIVERS\nv4_mini.sys                                                                                 section is writeable [0xB33483A0, 0x5FE082, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text  C:\WINDOWS\system\HsMgr.exe[536] ole32.dll!CoCreateInstanceEx                                                            774F0526 5 Bytes  JMP 1000A630 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\WINDOWS\system\HsMgr.exe[536] ole32.dll!CoCreateInstance                                                              774F057E 5 Bytes  JMP 1000A4D0 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  D:\Programy\LogMeIn Hamachi\hamachi-2-ui.exe[560] ole32.dll!CoCreateInstanceEx                                           774F0526 5 Bytes  JMP 1000A630 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  D:\Programy\LogMeIn Hamachi\hamachi-2-ui.exe[560] ole32.dll!CoCreateInstance                                             774F057E 5 Bytes  JMP 1000A4D0 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe[568] ole32.dll!CoCreateInstanceEx                           774F0526 5 Bytes  JMP 1000A630 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe[568] ole32.dll!CoCreateInstance                             774F057E 5 Bytes  JMP 1000A4D0 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\Program Files\Common Files\Java\Java Update\jusched.exe[596] ole32.dll!CoCreateInstanceEx                             774F0526 5 Bytes  JMP 1000A630 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\Program Files\Common Files\Java\Java Update\jusched.exe[596] ole32.dll!CoCreateInstance                               774F057E 5 Bytes  JMP 1000A4D0 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe[2516] ole32.dll!CoCreateInstanceEx                               774F0526 5 Bytes  JMP 0147A630 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe[2516] ole32.dll!CoCreateInstance                                 774F057E 5 Bytes  JMP 0147A4D0 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\Documents and Settings\ALE FAZA JA PIERDOLE\Moje dokumenty\Downloads\j1wkgm0t.exe[3700] ole32.dll!CoCreateInstanceEx  774F0526 5 Bytes  JMP 00BCA630 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)
.text  C:\Documents and Settings\ALE FAZA JA PIERDOLE\Moje dokumenty\Downloads\j1wkgm0t.exe[3700] ole32.dll!CoCreateInstance    774F057E 5 Bytes  JMP 00BCA4D0 C:\WINDOWS\system\HsSrv.dll (HsSrv Dynamic Link Library/C-Media Electronics Inc.)

---- EOF - GMER 1.0.15 ----