catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-11-25 20:58:49
Windows 5.1.2600 Dodatek Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0030914018fa]
"0025e75320d9"=hex:03,42,8b,c6,92,af,31,e1,96,c7,7c,ca,a8,7f,3e,67
"001e75fb062c"=hex:b7,ad,7b,cb,52,5a,a2,2e,20,28,fa,e7,fd,ac,16,15
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\0030914018fa]
"0025e75320d9"=hex:03,42,8b,c6,92,af,31,e1,96,c7,7c,ca,a8,7f,3e,67
"001e75fb062c"=hex:b7,ad,7b,cb,52,5a,a2,2e,20,28,fa,e7,fd,ac,16,15
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC]
"p0"="C:\Program Files\DAEMON Tools Lite\"
"h0"=dword:00000000
"hdf12"=hex:52,de,b8,fd,7f,49,68,e8,40,ea,a7,38,90,d6,86,48,84,69,49,a1,c6,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001]
"a0"=hex:20,01,00,00,ab,68,c5,77,86,2d,e7,81,2f,a6,0b,dd,ad,b8,de,15,fd,..
"hdf12"=hex:4b,15,cc,d2,34,07,c5,d0,1c,ff,97,fe,5d,c3,33,e0,bf,ad,c0,a4,db,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0]
"hdf12"=hex:bb,46,5d,cd,65,d1,0a,76,c1,e1,b1,a6,8d,01,d4,7c,fa,96,90,44,ea,..

scanning hidden registry entries ...

scanning hidden files ...