GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-07-11 08:43:25
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-5 SAMSUNG_HD080HJ rev.WT100-41
Running: tsj95duz.exe; Driver: C:\DOCUME~1\Radziu\USTAWI~1\Temp\awldypog.sys


---- Kernel code sections - GMER 1.0.15 ----

.text           C:\WINDOWS\system32\DRIVERS\nv4_mini.sys                                                           section is writeable [0xF6F57360, 0x20469D, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text           C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe[152] kernel32.dll!SetUnhandledExceptionFilter  7C84495D 4 Bytes  [C2, 04, 00, 00]
.text           C:\Programy\Winamp\winamp.exe[3336] USER32.dll!SetScrollInfo                                       7E369056 7 Bytes  JMP 0215A68D C:\Programy\Winamp\Plugins\gen_jumpex.dll
.text           C:\Programy\Winamp\winamp.exe[3336] USER32.dll!GetScrollInfo                                       7E37DFE2 7 Bytes  JMP 0215A615 C:\Programy\Winamp\Plugins\gen_jumpex.dll
.text           C:\Programy\Winamp\winamp.exe[3336] USER32.dll!ShowScrollBar                                       7E37F2F2 5 Bytes  JMP 0215A711 C:\Programy\Winamp\Plugins\gen_jumpex.dll
.text           C:\Programy\Winamp\winamp.exe[3336] USER32.dll!GetScrollPos                                        7E37F704 5 Bytes  JMP 0215A63D C:\Programy\Winamp\Plugins\gen_jumpex.dll
.text           C:\Programy\Winamp\winamp.exe[3336] USER32.dll!SetScrollPos                                        7E37F750 5 Bytes  JMP 0215A6B8 C:\Programy\Winamp\Plugins\gen_jumpex.dll
.text           C:\Programy\Winamp\winamp.exe[3336] USER32.dll!GetScrollRange                                      7E37F787 5 Bytes  JMP 0215A662 C:\Programy\Winamp\Plugins\gen_jumpex.dll
.text           C:\Programy\Winamp\winamp.exe[3336] USER32.dll!SetScrollRange                                      7E37F99B 5 Bytes  JMP 0215A6E3 C:\Programy\Winamp\Plugins\gen_jumpex.dll
.text           C:\Programy\Winamp\winamp.exe[3336] USER32.dll!EnableScrollBar                                     7E3B8005 7 Bytes  JMP 0215A5ED C:\Programy\Winamp\Plugins\gen_jumpex.dll
.text           C:\Program Files\Mozilla Firefox\firefox.exe[3480] ntdll.dll!LdrLoadDll                            7C9163C3 5 Bytes  JMP 0116FA35 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\firefox.exe[3480] kernel32.dll!VirtualAlloc                       7C809AF1 5 Bytes  JMP 014107C5 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\firefox.exe[3480] kernel32.dll!MapViewOfFile                      7C80B9A5 5 Bytes  JMP 0141079E C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text           C:\Program Files\Mozilla Firefox\firefox.exe[3480] GDI32.dll!CreateDIBSection                      77F19E19 5 Bytes  JMP 01410728 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)

---- Devices - GMER 1.0.15 ----

AttachedDevice  \FileSystem\Ntfs \Ntfs                                                                             eamon.sys (Amon monitor/ESET)
AttachedDevice  \Driver\Tcpip \Device\Tcp                                                                          epfwtdir.sys

---- EOF - GMER 1.0.15 ----