GMER 1.0.15.15640 - http://www.gmer.net Rootkit scan 2011-06-27 07:38:18 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD16 rev.58.0 Running: sjy1zhj3.exe; Driver: C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\pwtiypow.sys ---- System - GMER 1.0.15 ---- SSDT 8534BC90 ZwAssignProcessToJobObject SSDT 8534C200 ZwDebugActiveProcess SSDT 8534C2F0 ZwDuplicateObject SSDT 8534B590 ZwOpenProcess SSDT 8534B800 ZwOpenThread SSDT 8534BFD0 ZwProtectVirtualMemory SSDT 8534C0E0 ZwQueueApcThread SSDT 8534BEC0 ZwSetContextThread SSDT 8534BD90 ZwSetInformationThread SSDT 85348DA0 ZwSetSecurityObject SSDT 8534BB90 ZwSuspendProcess SSDT 8534BA80 ZwSuspendThread SSDT 8534B6E0 ZwTerminateProcess SSDT 8534BA50 ZwTerminateThread SSDT 8534C6D0 ZwWriteVirtualMemory ---- Kernel code sections - GMER 1.0.15 ---- ? nwfilter.sys Nie można odnaleźć określonego pliku. ! init C:\WINDOWS\system32\drivers\Senfilt.sys entry point in "init" section [0xA123BA00] ---- User code sections - GMER 1.0.15 ---- .text C:\Program Files\ESET\ESET Smart Security\ekrn.exe[816] kernel32.dll!SetUnhandledExceptionFilter 7C84495D 4 Bytes [C2, 04, 00, 00] ---- Devices - GMER 1.0.15 ---- AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET) AttachedDevice \Driver\Tcpip \Device\Ip epfwtdi.sys (ESET Personal Firewall TDI filter/ESET) AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET) AttachedDevice \Driver\Tcpip \Device\Udp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET) AttachedDevice \Driver\Tcpip \Device\RawIp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET) AttachedDevice \FileSystem\Fastfat \Fat eamon.sys (Amon monitor/ESET) Device \FileSystem\Cdfs \Cdfs DLAIFS_M.SYS (Drive Letter Access Component/Roxio) ---- EOF - GMER 1.0.15 ----