GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2010-12-04 16:30:05
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-18 SAMSUNG_SV0411N rev.UA100-08
Running: gmer.exe; Driver: C:\DOCUME~1\Adam\USTAWI~1\Temp\pxtdapow.sys


---- System - GMER 1.0.15 ----

SSDT    F7DFFF36                                  ZwCreateKey
SSDT    F7DFFF2C                                  ZwCreateThread
SSDT    F7DFFF3B                                  ZwDeleteKey
SSDT    F7DFFF45                                  ZwDeleteValueKey
SSDT    F7DFFF4A                                  ZwLoadKey
SSDT    F7DFFF18                                  ZwOpenProcess
SSDT    F7DFFF1D                                  ZwOpenThread
SSDT    F7DFFF54                                  ZwReplaceKey
SSDT    F7DFFF4F                                  ZwRestoreKey
SSDT    F7DFFF40                                  ZwSetValueKey

---- Kernel code sections - GMER 1.0.15 ----

.text   C:\WINDOWS\System32\DRIVERS\nv4_mini.sys  section is writeable [0xF70BE360, 0x2456AE, 0xE8000020]
.text   C:\WINDOWS\system32\DRIVERS\atksgt.sys    section is writeable [0xB9A83300, 0x3B6D8, 0xE8000020]
.text   C:\WINDOWS\system32\DRIVERS\lirsgt.sys    section is writeable [0xF7958300, 0x1BEE, 0xE8000020]

---- Devices - GMER 1.0.15 ----

Device                                            Ntfs.sys (NT File System Driver/Microsoft Corporation)
Device                                            mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)

---- Disk sectors - GMER 1.0.15 ----

Disk    \Device\Harddisk0\DR0                     sector 62: copy of MBR

---- EOF - GMER 1.0.15 ----