Untitled

GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-05-02 09:53:33
Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Scsi\nvgts1Port2Path0Target0Lun0 SAMSUNG_ rev.VT10 232,83GB
Running: drymkbsm.exe; Driver: C:\DOCUME~1\Przemek\USTAWI~1\Temp\pwtdykog.sys


---- System - GMER 2.1 ----

Code   F7B7AC9C                                                                                              ZwRequestPort
Code   F7B7AD3C                                                                                              ZwRequestWaitReplyPort
Code   F7B7ABFC                                                                                              ZwTraceEvent
Code   F7B7AC9B                                                                                              NtRequestPort
Code   F7B7AD3B                                                                                              NtRequestWaitReplyPort
Code   F7B7ABFB                                                                                              NtTraceEvent

---- Kernel code sections - GMER 2.1 ----

.text  C:\WINDOWS\system32\DRIVERS\nv4_mini.sys                                                              section is writeable [0xF587E3C0, 0x72B99A, 0xE8000020]

---- User code sections - GMER 2.1 ----

.text  C:\Program Files\Pando Networks\Media Booster\PMB.exe[1312] kernel32.dll!SetUnhandledExceptionFilter  7C8449FD 5 Bytes  [33, C0, C2, 04, 00] {XOR EAX, EAX; RET 0x4}
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3464] ntdll.dll!LdrLoadDll                               7C9163A3 5 Bytes  JMP 01596D70 C:\Program Files\Mozilla Firefox\xul.dll
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3464] kernel32.dll!lstrlenW + 43                         7C809ADC 7 Bytes  JMP 018ED736 C:\Program Files\Mozilla Firefox\xul.dll
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3464] kernel32.dll!MapViewOfFileEx + 6A                  7C80B990 7 Bytes  JMP 018ED713 C:\Program Files\Mozilla Firefox\xul.dll
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3464] kernel32.dll!ValidateLocale + B1E8                 7C8449F8 7 Bytes  JMP 015B1C62 C:\Program Files\Mozilla Firefox\xul.dll
.text  C:\Program Files\Mozilla Firefox\firefox.exe[3464] GDI32.dll!SetDIBitsToDevice + 209                  77F19E04 7 Bytes  JMP 018ED694 C:\Program Files\Mozilla Firefox\xul.dll

---- Registry - GMER 2.1 ----

Reg    HKLM\SOFTWARE\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}@scansk                             0xE8 0x1A 0x2F 0x6C ...
Reg    HKLM\SOFTWARE\Classes\CLSID\{81a20ec1-18f6-4526-888e-976654b1c60d}@Model                              266
Reg    HKLM\SOFTWARE\Classes\CLSID\{81a20ec1-18f6-4526-888e-976654b1c60d}@Therad                             16

---- EOF - GMER 2.1 ----