GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-05-30 07:00:42
Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-6 ST3160215ACE rev.3.ACB 149,05GB
Running: zgm86h32.exe; Driver: C:\DOCUME~1\Admin\USTAWI~1\Temp\ufldqpod.sys


---- System - GMER 2.1 ----

SSDT            \SystemRoot\system32\Drivers\fwdrv.sys        ZwClose [0xA98BDD1E]
SSDT            \SystemRoot\system32\Drivers\fwdrv.sys        ZwCreateFile [0xA98BD62B]
SSDT            \SystemRoot\system32\Drivers\fwdrv.sys        ZwCreateProcess [0xA98BDC92]
SSDT            \SystemRoot\system32\Drivers\fwdrv.sys        ZwCreateProcessEx [0xA98BDC17]
SSDT            \SystemRoot\system32\Drivers\fwdrv.sys        ZwCreateSection [0xA98BD713]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwNotifyChangeKey [0xA998C14A]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwNotifyChangeMultipleKeys [0xA998C21A]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwOpenProcess [0xA998BD7C]
SSDT            \??\C:\WINDOWS\system32\drivers\avgtpx86.sys  ZwQueryValueKey [0xF75771AE]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwSuspendProcess [0xA998BF6A]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwSuspendThread [0xA998C000]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwTerminateProcess [0xA998BE32]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwTerminateThread [0xA998BECE]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwWriteVirtualMemory [0xA998C09C]

---- Kernel code sections - GMER 2.1 ----

.text           C:\WINDOWS\system32\DRIVERS\ati2mtag.sys      section is writeable [0xB9C78000, 0x1C5D38, 0xE8000020]

---- Devices - GMER 2.1 ----

AttachedDevice  \Driver\Tcpip \Device\Ip                      fwdrv.sys
AttachedDevice  \Driver\Tcpip \Device\Ip                      ntoskrnl.exe
AttachedDevice  \Driver\Tcpip \Device\Ip                      avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\Tcp                     avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\Tcp                     fwdrv.sys
AttachedDevice  \Driver\Tcpip \Device\Tcp                     ntoskrnl.exe
AttachedDevice  \Driver\Tcpip \Device\Udp                     avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\Udp                     fwdrv.sys
AttachedDevice  \Driver\Tcpip \Device\Udp                     ntoskrnl.exe
AttachedDevice  \Driver\Tcpip \Device\RawIp                   avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\RawIp                   fwdrv.sys
AttachedDevice  \Driver\Tcpip \Device\RawIp                   ntoskrnl.exe
AttachedDevice  \FileSystem\Fastfat \Fat                      fltMgr.sys

---- EOF - GMER 2.1 ----