GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-07-16 03:52:55
Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4 WDC_WD600VE-00HDT0 rev.09.07D09 55,89GB
Running: gmer.exe; Driver: C:\DOCUME~1\ppp\USTAWI~1\Temp\fwpcqpob.sys


---- System - GMER 2.1 ----

SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                               ZwNotifyChangeKey [0xA92EF004]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                               ZwNotifyChangeMultipleKeys [0xA92EF0D4]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                               ZwOpenProcess [0xA92EED76]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                               ZwTerminateProcess [0xA92EEE1E]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                               ZwTerminateThread [0xA92EEEBA]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys                                                                               ZwWriteVirtualMemory [0xA92EEF56]

---- User code sections - GMER 2.1 ----

.text           C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\GG\Application\ggapp.exe[1200] ntdll.dll!LdrLoadDll        7C9163C3 5 Bytes  JMP 00F9C533 C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\GG\Application\xulrunner\xul.dll
.text           C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\GG\Application\ggapp.exe[1200] kernel32.dll!VirtualAlloc   7C809AF1 5 Bytes  JMP 0178F664 C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\GG\Application\xulrunner\xul.dll
.text           C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\GG\Application\ggapp.exe[1200] kernel32.dll!MapViewOfFile  7C80B9A5 5 Bytes  JMP 0178F6AA C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\GG\Application\xulrunner\xul.dll
.text           C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\GG\Application\ggapp.exe[1200] GDI32.dll!CreateDIBSection  77F19E19 5 Bytes  JMP 0178F6D1 C:\Documents and Settings\ppp\Ustawienia lokalne\Dane aplikacji\GG\Application\xulrunner\xul.dll

---- Devices - GMER 2.1 ----

AttachedDevice  \FileSystem\Ntfs \Ntfs                                                                                                     avgidsfilterx.sys
AttachedDevice  \Driver\Tcpip \Device\Ip                                                                                                   avgtdix.sys
AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass0                                                                                    SynTP.sys
AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass1                                                                                    SynTP.sys
AttachedDevice  \Driver\Tcpip \Device\Tcp                                                                                                  avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\Udp                                                                                                  avgtdix.sys
AttachedDevice  \Driver\Tcpip \Device\RawIp                                                                                                avgtdix.sys

---- EOF - GMER 2.1 ----