GMER 2.2.19882 - http://www.gmer.net Rootkit scan 2016-09-18 11:31:37 Windows 5.1.2600 Dodatek Service Pack 2 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e WDC_WD3200BEVT-22ZCT0 rev.11.01A11 298.09GB Running: 05zu51cd.exe; Driver: C:\DOCUME~1\Czesiek\USTAWI~1\Temp\pwtdrpog.sys ---- System - GMER 2.2 ---- SSDT 8A484AA0 ZwConnectPort ---- Devices - GMER 2.2 ---- AttachedDevice \Driver\Tcpip \Device\Ip SYMTDI.SYS AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys AttachedDevice \Driver\Tcpip \Device\Tcp SYMTDI.SYS AttachedDevice \Driver\Tcpip \Device\Udp SYMTDI.SYS AttachedDevice \Driver\Tcpip \Device\RawIp SYMTDI.SYS Device mrxsmb.sys Device Fastfat.sys AttachedDevice fltMgr.sys AttachedDevice AsDsm.sys ---- Registry - GMER 2.2 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x3E 0xAE 0x03 0x41 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x3E 0xAE 0x03 0x41 ... ---- Files - GMER 2.2 ---- File C:\ADSM_PData_0150 File C:\ADSM_PData_0150\DragWait.exe File C:\ADSM_PData_0150\_avt File C:\ADSM_PData_0150\DB File C:\ADSM_PData_0150\DB\SI.db File C:\ADSM_PData_0150\DB\UL.db File C:\ADSM_PData_0150\DB\VL.db File C:\ADSM_PData_0150\DB\_avt File C:\Program Files\ASUS\ASUS Data Security Manager\driver\x86 File C:\Program Files\ASUS\ASUS Data Security Manager\driver\x86\_avt File C:\Program Files\ASUS\ASUS Data Security Manager\driver\x86\AsDsm.sys ---- EOF - GMER 2.2 ----