GMER 2.0.18444 - http://www.gmer.net Rootkit scan 2013-01-15 12:54:01 Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 WDC_WD16 rev.04.0 149,05GB Running: q2whnqyx.exe; Driver: C:\DOCUME~1\SAPER\USTAWI~1\Temp\uxloyfod.sys ---- Registry - GMER 2.0 ---- Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e370df080 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e370df080@58170c8cda3c 0xFC 0x89 0x23 0x39 ... Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e370df080@0023b4299d66 0x51 0x52 0xE5 0xB5 ... Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e370df080@3cf72aaf3529 0xA1 0xE3 0x0C 0xA3 ... Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e370df080@001237a7f035 0x08 0x66 0x3C 0xEE ... Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e370df080@a826d92bac89 0x89 0x38 0x1A 0xB0 ... Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e370df080@0023769f0f22 0xAA 0x31 0xF1 0x31 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e370df080 Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e370df080@58170c8cda3c 0xFC 0x89 0x23 0x39 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e370df080@0023b4299d66 0x51 0x52 0xE5 0xB5 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e370df080@3cf72aaf3529 0xA1 0xE3 0x0C 0xA3 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e370df080@001237a7f035 0x08 0x66 0x3C 0xEE ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e370df080@a826d92bac89 0x89 0x38 0x1A 0xB0 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e370df080@0023769f0f22 0xAA 0x31 0xF1 0x31 ... Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001e370df080 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001e370df080@58170c8cda3c 0xFC 0x89 0x23 0x39 ... Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001e370df080@0023b4299d66 0x51 0x52 0xE5 0xB5 ... Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001e370df080@3cf72aaf3529 0xA1 0xE3 0x0C 0xA3 ... Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001e370df080@001237a7f035 0x08 0x66 0x3C 0xEE ... Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001e370df080@a826d92bac89 0x89 0x38 0x1A 0xB0 ... Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001e370df080@0023769f0f22 0xAA 0x31 0xF1 0x31 ... ---- EOF - GMER 2.0 ----