GMER

1. GMER 1.0.15.15640 - http://www.gmer.net
2. Rootkit scan 2011-06-30 01:13:44
3. Windows 5.1.2600 Service Pack 3 Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-1c WDC_WD1600JB-00REA0 rev.20.00K20
4. Running: mc59w7oj.exe; Driver: C:\DOCUME~1\Dave\LOCALS~1\Temp\ugtdypob.sys
5.  
6.  
7. ---- Kernel code sections - GMER 1.0.15 ----
8.  
9. .text C:\WINDOWS\system32\DRIVERS\ati2mtag.sys section is writeable [0xB9482000, 0x273B67, 0xE8000020]
10.  
11. ---- User code sections - GMER 1.0.15 ----
12.  
13. .text C:\Program Files\Mozilla Firefox\plugin-container.exe[2096] USER32.dll!SetWindowLongA 7E42C29D 5 Bytes JMP 10698DD9 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
14. .text C:\Program Files\Mozilla Firefox\plugin-container.exe[2096] USER32.dll!SetWindowLongW 7E42C2BB 5 Bytes JMP 10698D6B C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
15. .text C:\Program Files\Mozilla Firefox\plugin-container.exe[2096] USER32.dll!GetWindowInfo 7E42C49C 5 Bytes JMP 104C7187 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
16. .text C:\Program Files\Mozilla Firefox\plugin-container.exe[2096] USER32.dll!TrackPopupMenu 7E46531E 5 Bytes JMP 104C7781 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
17. .text C:\Program Files\Mozilla Firefox\firefox.exe[3580] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 00401410 C:\Program Files\Mozilla Firefox\firefox.exe (Firefox/Mozilla Corporation)
18. .text C:\Program Files\Mozilla Firefox\firefox.exe[3580] USER32.dll!GetWindowInfo 7E42C49C 5 Bytes JMP 10499437 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
19.  
20. ---- EOF - GMER 1.0.15 ----