GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-03-06 18:42:12 Windows 6.1.7600 Running: Gmer.exe ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xE4 0xA6 0x2E 0xFE ... Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 D:\Programy\DAEMON Tools Lite\ Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0xA0 0x02 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x6E 0x68 0x09 0xFB ... Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet001\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x79 0x4E 0x10 0x07 ... Reg HKLM\SYSTEM\CurrentControlSet\services\LanmanServer\Linkage@Bind ??????????:??????s?g;A????????????X???????????????P??????%??????e%??????????????????????PNP_TDI?????????????????????????????int?????ROOT\CompositeBus??sof??? "??????h?????h???????????????????????n??????N???????????D??4??MONITOR\PTS0309??@??? ?????????????Rai??5&478d80e&0??0????L???????????????y?????? ???????.???????/???????????????????????????7?????????d?:???????????????????????????l????????????N??????1?????DV_??????????????s?????h?????????????????????vo???????????C?????e??????N??????????????????????????????e??LegacyDriver?L??????????????????????????????????????????????????2?????????47?????????????????? ???????????????????????????????????5398-158????????????????N?????????????????????????????????????????????????????????? ???????????????.??????????????????Tcpip?????????????????????????????????????????????18?????????0???????????????????????????? ?????????????????????????????????????????????????????????????????????????????????????????Z????????????????????????????? ???????????????????????????????????????????????? Reg HKLM\SYSTEM\CurrentControlSet\services\LanmanServer\Linkage@Route ????????????????????????Microsoft???????????Ne??????????????????????*6to4mp?????????????????????1???????????????????? ?gB ???????????? ?????????p?????????????????s??????????????????????????B??????????????t???system32\DRIVERS\usbhub.sys?\usbhub.sys?????????????????t???system32\DRIVERS\vdrvroot.sys???system32\DRIVERS\USBSTOR.SYS?USBSTOR.SYS????????????????t?????J???????????h??????????????????????????????t???????????????????????????????????????????B????????????????????????????????????????????????????????????????:???????????h?????????????????????????????????????????????????????????????????????????????????????????????????Sterownik modu?u wyliczaj?cego dysku wirtualnego Microsoft????????$?????????p???????????????p???system32\DRIVERS\volmgr.sys?????System Bus Extender?????????????????t????????????????????????????????????:??????t???e??????????Modem?????`??????????????????????c???????m??????????\Device\{0D06B48A-2F5E-4B36-89B5-5EEE7AEFCB52}??02????"?????????????????????????t?????????????>?????????????SEMC ?f, Reg HKLM\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Linkage@Export ??????????????????????*?????????????????s???{4d36e967-e325-11ce-bfc1-08002be10318}???????????????5???????m??USB\ROOT_HUB&VID1002&PID438B&REV0000?USB\ROOT_HUB&VID1002&PID438B?USB\ROOT_HUB???????????????????????????????????????????M???e????*??????v?????????n?v??Port_#0001.Hub_#0004??????N?????????????????????????l???@oem2.inf,%manufacturer%;Nokia????????"?????????????????e?????????????????????????????e????????????????t?????2????????????n????????????????????????????????????????????oem92.inf????????????v???????G????8???????????h??????????????????????t??s???????????{4824f8d6-15e2-11e1-a9c2-806e6f6e6963}??????????$???4????? ??????? ??????????????????????????????????????????????????????? ??????????? ??????????? ??????????????? ???'???? ??HJ???f???????????????