Untitled

GMER 2.1.19115 - http://www.gmer.net
Rootkit scan 2013-03-03 21:50:54
Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Scsi\nvgts1Port2Path0Target0Lun0 SAMSUNG_ rev.VT10 232,83GB
Running: k18n7lf8.exe; Driver: C:\DOCUME~1\Przemek\USTAWI~1\Temp\pwtdykog.sys


---- System - GMER 2.1 ----

Code   F7B5AC9C                                                                                             ZwRequestPort
Code   F7B5AD3C                                                                                             ZwRequestWaitReplyPort
Code   F7B5ABFC                                                                                             ZwTraceEvent
Code   F7B5AC9B                                                                                             NtRequestPort
Code   F7B5AD3B                                                                                             NtRequestWaitReplyPort
Code   F7B5ABFB                                                                                             NtTraceEvent

---- Kernel code sections - GMER 2.1 ----

.text  C:\WINDOWS\system32\DRIVERS\nv4_mini.sys                                                             section is writeable [0xF65ED3C0, 0x72B99A, 0xE8000020]

---- User code sections - GMER 2.1 ----

.text  C:\Program Files\Pando Networks\Media Booster\PMB.exe[900] kernel32.dll!SetUnhandledExceptionFilter  7C8449FD 5 Bytes  [33, C0, C2, 04, 00] {XOR EAX, EAX; RET 0x4}
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3892] ntdll.dll!LdrLoadDll                              7C9163A3 5 Bytes  JMP 01588BF0 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3892] kernel32.dll!lstrlenW + 43                        7C809ADC 7 Bytes  JMP 018D7FF0 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3892] kernel32.dll!MapViewOfFileEx + 6A                 7C80B990 7 Bytes  JMP 018D7FCD C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3892] kernel32.dll!ValidateLocale + B1E8                7C8449F8 7 Bytes  JMP 0159F1AD C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3892] USER32.dll!GetWindowInfo                          7E37C49C 5 Bytes  JMP 017577D6 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3892] GDI32.dll!SetDIBitsToDevice + 209                 77F19E04 7 Bytes  JMP 018D7F4E C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)

---- Registry - GMER 2.1 ----

Reg    HKLM\SOFTWARE\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}@scansk                            0xE8 0x1A 0x2F 0x6C ...
Reg    HKLM\SOFTWARE\Classes\CLSID\{81a20ec1-18f6-4526-888e-976654b1c60d}@Model                             266
Reg    HKLM\SOFTWARE\Classes\CLSID\{81a20ec1-18f6-4526-888e-976654b1c60d}@Therad                            16

---- EOF - GMER 2.1 ----