GMER 2.1.19163 - http://www.gmer.net Rootkit scan 2014-01-02 20:36:03 Windows 6.0.6002 Service Pack 2 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 Hitachi_ rev.SBDO 111,79GB Running: z9w92eco.exe; Driver: C:\Users\acer\AppData\Local\Temp\kgldrpob.sys ---- Kernel code sections - GMER 2.1 ---- ? C:\Windows\system32\Drivers\PROCEXP113.SYS Nie można odnaleźć określonego pliku. ! ? C:\Users\acer\AppData\Local\Temp\catchme.sys Nie można odnaleźć określonego pliku. ! ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0009dd5003cf Reg HKLM\SYSTEM\CurrentControlSet\Services\DcomLaunch\Parameters@ServiceDll %SystemRoot%\system32\rpcss.dll Reg HKLM\SYSTEM\CurrentControlSet\Services\DcomLaunch Reg HKLM\SYSTEM\CurrentControlSet\Services\RpcSs\Parameters@ServiceDll %SystemRoot%\system32\rpcss.dll Reg HKLM\SYSTEM\CurrentControlSet\Services\RpcSs Reg HKLM\SYSTEM\CurrentControlSet\Services\TrkWks\Parameters@ServiceDll %SystemRoot%\System32\trkwks.dll Reg HKLM\SYSTEM\CurrentControlSet\Services\TrkWks\Parameters@ServiceDllUnloadOnStop 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\TrkWks Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\0009dd5003cf (not active ControlSet) ---- Disk sectors - GMER 2.1 ---- Disk \Device\Harddisk0\DR0 unknown MBR code ---- EOF - GMER 2.1 ----