GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2011-01-20 03:08:17
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 FUJITSU_MHV2040AH rev.00000096
Running: 0m06wydc.exe; Driver: C:\DOCUME~1\Jess\LOCALS~1\Temp\pwtdypoc.sys


---- User code sections - GMER 1.0.15 ----

.text   C:\Program Files\Mozilla Firefox\firefox.exe[1064] ntdll.dll!LdrLoadDll      7C9163C3 5 Bytes  JMP 004013F0 C:\Program Files\Mozilla Firefox\firefox.exe (Firefox/Mozilla Corporation)
.text   C:\Program Files\Mozilla Firefox\firefox.exe[1064] WS2_32.dll!closesocket    71AB3E2B 5 Bytes  JMP 001561B2 
.text   C:\Program Files\Mozilla Firefox\firefox.exe[1064] WS2_32.dll!send           71AB4C27 5 Bytes  JMP 00155D3A 
.text   C:\Program Files\Mozilla Firefox\firefox.exe[1064] WS2_32.dll!WSARecv        71AB4CB5 5 Bytes  JMP 00155F37 
.text   C:\Program Files\Mozilla Firefox\firefox.exe[1064] WS2_32.dll!gethostbyname  71AB5355 5 Bytes  JMP 00156493 
.text   C:\Program Files\Mozilla Firefox\firefox.exe[1064] WS2_32.dll!recv           71AB676F 5 Bytes  JMP 00155DAD 
.text   C:\Program Files\Mozilla Firefox\firefox.exe[1064] WS2_32.dll!WSASend        71AB68FA 5 Bytes  JMP 00155E88 
.text   C:\WINDOWS\Explorer.EXE[2504] Explorer.EXE                                   01002583 2 Bytes  [AC, 18]
.text   C:\WINDOWS\Explorer.EXE[2504] Explorer.EXE                                   01002597 14 Bytes  [8B, FF, 55, 8B, EC, 56, 57, ...]
.text   C:\WINDOWS\Explorer.EXE[2504] kernel32.dll!CreateProcessInternalW            7C8197B0 5 Bytes  JMP 00B472DA 

---- Devices - GMER 1.0.15 ----

Device  \FileSystem\Fastfat \Fat                                                     A80DBD20
Device  \FileSystem\Fs_Rec \FileSystem\UdfsCdRomRecognizer                           tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)
Device  \FileSystem\Fs_Rec \FileSystem\FatCdRomRecognizer                            tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)
Device  \FileSystem\Fs_Rec \FileSystem\CdfsRecognizer                                tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)
Device  \FileSystem\Fs_Rec \FileSystem\FatDiskRecognizer                             tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)
Device  \FileSystem\Fs_Rec \FileSystem\UdfsDiskRecognizer                            tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)
Device  \FileSystem\Cdfs \Cdfs                                                       tfsnifs.sys (Drive Letter Access Component/Sonic Solutions)

---- EOF - GMER 1.0.15 ----