GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2010-01-01 01:07:30
Windows 5.1.2600 Dodatek Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST31000528AS rev.CC46
Running: jw3dkxko.exe; Driver: C:\DOCUME~1\MRWKA~1\USTAWI~1\Temp\kwwdrfoc.sys


---- System - GMER 1.0.15 ----

SSDT            B86FE06C                                  ZwClose
SSDT            B86FE026                                  ZwCreateKey
SSDT            B86FE076                                  ZwCreateSection
SSDT            B86FE01C                                  ZwCreateThread
SSDT            B86FE02B                                  ZwDeleteKey
SSDT            B86FE035                                  ZwDeleteValueKey
SSDT            B86FE067                                  ZwDuplicateObject
SSDT            B86FE03A                                  ZwLoadKey
SSDT            B86FE008                                  ZwOpenProcess
SSDT            B86FE00D                                  ZwOpenThread
SSDT            B86FE044                                  ZwReplaceKey
SSDT            B86FE03F                                  ZwRestoreKey
SSDT            B86FE07B                                  ZwSetContextThread
SSDT            B86FE030                                  ZwSetValueKey
SSDT            B86FE017                                  ZwTerminateProcess

---- Kernel code sections - GMER 1.0.15 ----

.text           C:\WINDOWS\system32\DRIVERS\ati2mtag.sys  section is writeable [0xB5872000, 0x1B601E, 0xE8000020]

---- Devices - GMER 1.0.15 ----

AttachedDevice  \FileSystem\Fastfat \Fat                  fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----