GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-11-23 15:28:23
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-10 WDC_WD2500BEVT-60ZCT1 rev.13.01A13
Running: j580vufz.exe; Driver: C:\DOCUME~1\0A00~1\USTAWI~1\Temp\pgtdypow.sys


---- System - GMER 1.0.15 ----

SSDT            spgj.sys                                                      ZwEnumerateKey [0xB7EC5CA4]
SSDT            spgj.sys                                                      ZwEnumerateValueKey [0xB7EC6032]

---- Devices - GMER 1.0.15 ----

Device          \Driver\atapi \Device\Ide\IdePort0                            [B7DFAB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-5                   [B7DFAB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\atapi \Device\Ide\IdePort1                            [B7DFAB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\atapi \Device\Ide\IdePort2                            [B7DFAB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\atapi \Device\Ide\IdePort3                            [B7DFAB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\atapi \Device\Ide\IdeDeviceP3T0L0-10                  [B7DFAB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\a92n238y \Device\Scsi\a92n238y1                       8AE69500
Device          \Driver\a92n238y \Device\Scsi\a92n238y1Port4Path0Target0Lun0  8AE69500
Device          \FileSystem\Ntfs \Ntfs                                        8B0951F8

AttachedDevice  \FileSystem\Ntfs \Ntfs                                        eamon.sys (Amon monitor/ESET)

Device          \FileSystem\Fastfat \Fat                                      8AD7C318

AttachedDevice  \FileSystem\Fastfat \Fat                                      eamon.sys (Amon monitor/ESET)
AttachedDevice  \Driver\Tcpip \Device\Ip                                      prio.sys (Prio Network Activity Driver/Xeno)
AttachedDevice  \Driver\Tcpip \Device\Ip                                      ntkrnlpa.exe (Jądro i system NT/Microsoft Corporation)
AttachedDevice  \Driver\Tcpip \Device\Tcp                                     prio.sys (Prio Network Activity Driver/Xeno)
AttachedDevice  \Driver\Tcpip \Device\Tcp                                     ntkrnlpa.exe (Jądro i system NT/Microsoft Corporation)
AttachedDevice  \Driver\Tcpip \Device\Udp                                     prio.sys (Prio Network Activity Driver/Xeno)
AttachedDevice  \Driver\Tcpip \Device\Udp                                     ntkrnlpa.exe (Jądro i system NT/Microsoft Corporation)
AttachedDevice  \Driver\Tcpip \Device\RawIp                                   prio.sys (Prio Network Activity Driver/Xeno)
AttachedDevice  \Driver\Tcpip \Device\RawIp                                   ntkrnlpa.exe (Jądro i system NT/Microsoft Corporation)
AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass0                       SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass1                       SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)

---- EOF - GMER 1.0.15 ----