GMER 1.0.15.15641 - http://www.gmer.net Rootkit quick scan 2012-03-12 23:14:10 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-3 SAMSUNG_HD502HI rev.1AG01118 Running: tcmmmxvk.exe; Driver: C:\DOCUME~1\Marcin\USTAWI~1\Temp\pgtdypow.sys ---- System - GMER 1.0.15 ---- SSDT spxz.sys ZwEnumerateKey [0xB7ECDDA4] SSDT spxz.sys ZwEnumerateValueKey [0xB7ECE132] ---- Devices - GMER 1.0.15 ---- Device \Driver\atapi \Device\Ide\IdePort0 [B7DBCB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdePort1 [B7DBCB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdePort2 [B7DBCB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdePort3 [B7DBCB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-e [B7DBCB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-3 [B7DBCB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\FantomDVDPort \Device\Scsi\FantomDVDPort1 8A4141F8 Device \Driver\JRAID \Device\Scsi\JRAID1Port4Path0Target0Lun0 8A9521F8 Device \Driver\JRAID \Device\Scsi\JRAID1 8A9521F8 Device \Driver\FantomDVDPort \Device\Scsi\FantomDVDPort1Port5Path0Target0Lun0 8A4141F8 Device \FileSystem\Ntfs \Ntfs 8A9511F8 Device \FileSystem\Fastfat \Fat 8A20C500 ---- EOF - GMER 1.0.15 ----