GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2011-11-28 21:07:42 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4 WDC_WD800UE-22HCT0 rev.09.07D09 Running: q5ef6t0w.exe; Driver: C:\DOCUME~1\centrino\USTAWI~1\Temp\pgddapow.sys ---- Devices - GMER 1.0.15 ---- Device Fastfat.sys (Fast FAT File System Driver/Microsoft Corporation) AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) AttachedDevice \Driver\Tcpip \Device\Tcp tcpipBM.SYS (Bytemobile Kernel Network Provider/Bytemobile, Inc.) Device \Driver\Cdrom \Device\CdRom0 OsaFsLoc.sys (Filesystem Lock driver/OSA Technologies) Device mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation) ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000a9410523d Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000a9410523d@00180fcf64e5 0xB8 0xD9 0x71 0xC1 ... Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000a9410523d (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000a9410523d@00180fcf64e5 0xB8 0xD9 0x71 0xC1 ... ---- EOF - GMER 1.0.15 ----