GMER 1.0.15.15640 - http://www.gmer.net Rootkit scan 2011-07-21 01:14:09 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST980811AS rev.3.ALB Running: gmer.exe; Driver: C:\DOCUME~1\Gosiaaa\USTAWI~1\Temp\uxryrpob.sys ---- Devices - GMER 1.0.15 ---- AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xB0 0x61 0xE9 0x7F ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0xF2 0x3E 0x2E 0x85 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0xFB 0xDB 0x06 0xB3 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xB0 0x61 0xE9 0x7F ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0xF2 0x3E 0x2E 0x85 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0xFB 0xDB 0x06 0xB3 ... ---- Files - GMER 1.0.15 ---- File C:\Documents and Settings\Gosiaaa\Dane aplikacji\Macromedia\Flash Player\#SharedObjects\QEQ8SAD8\sggw.tv.\wp-content 0 bytes File C:\Documents and Settings\Gosiaaa\Dane aplikacji\Macromedia\Flash Player\#SharedObjects\QEQ8SAD8\sggw.tv.\wp-content\plugins 0 bytes File C:\Documents and Settings\Gosiaaa\Dane aplikacji\Macromedia\Flash Player\#SharedObjects\QEQ8SAD8\sggw.tv.\wp-content\plugins\hana-flv-player 0 bytes File C:\Documents and Settings\Gosiaaa\Dane aplikacji\Macromedia\Flash Player\#SharedObjects\QEQ8SAD8\sggw.tv.\wp-content\plugins\hana-flv-player\flowplayer3 0 bytes File C:\Documents and Settings\Gosiaaa\Dane aplikacji\Macromedia\Flash Player\#SharedObjects\QEQ8SAD8\sggw.tv.\wp-content\plugins\hana-flv-player\flowplayer3\flowplayer-3.1.1.swf 0 bytes File C:\Documents and Settings\Gosiaaa\Dane aplikacji\Macromedia\Flash Player\#SharedObjects\QEQ8SAD8\sggw.tv.\wp-content\plugins\hana-flv-player\flowplayer3\flowplayer-3.1.1.swf\org.flowplayer.sol 67 bytes File C:\Documents and Settings\Gosiaaa\Dane aplikacji\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#sggw.tv.\settings.sol 78 bytes ---- EOF - GMER 1.0.15 ----