GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-11-02 12:46:46 Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 FUJITSU_MHZ2320BH_G2 rev.8909 Running: gmer.exe; Driver: C:\Users\Maslo\AppData\Local\Temp\ugloypod.sys ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0021866b431a Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0021866b431a@001641ba2bba 0x69 0xFD 0x44 0x88 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0021866b431a@0022fc5793e6 0xD1 0x11 0xAF 0xBC ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0021866b431a@001e3b6cd0bd 0xBE 0x54 0xB4 0x20 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0021866b431a@d875334ce7c7 0xC9 0x20 0xAF 0x34 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0021866b431a@002243d622c3 0x25 0xCA 0xD7 0x41 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0021866b431a@d87533c80ad8 0x5C 0x18 0x6C 0xC9 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0021866b431a@f8db7fae9cce 0xD1 0x4D 0xE7 0xE8 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x04 0x35 0xAA 0xC0 ... Reg HKLM\SYSTEM\ControlSet012\Services\BTHPORT\Parameters\Keys\0021866b431a (not active ControlSet) Reg HKLM\SYSTEM\ControlSet012\Services\BTHPORT\Parameters\Keys\0021866b431a@001641ba2bba 0x69 0xFD 0x44 0x88 ... Reg HKLM\SYSTEM\ControlSet012\Services\BTHPORT\Parameters\Keys\0021866b431a@0022fc5793e6 0xD1 0x11 0xAF 0xBC ... Reg HKLM\SYSTEM\ControlSet012\Services\BTHPORT\Parameters\Keys\0021866b431a@001e3b6cd0bd 0xBE 0x54 0xB4 0x20 ... Reg HKLM\SYSTEM\ControlSet012\Services\BTHPORT\Parameters\Keys\0021866b431a@d875334ce7c7 0xC9 0x20 0xAF 0x34 ... Reg HKLM\SYSTEM\ControlSet012\Services\BTHPORT\Parameters\Keys\0021866b431a@002243d622c3 0x25 0xCA 0xD7 0x41 ... Reg HKLM\SYSTEM\ControlSet012\Services\BTHPORT\Parameters\Keys\0021866b431a@d87533c80ad8 0x5C 0x18 0x6C 0xC9 ... Reg HKLM\SYSTEM\ControlSet012\Services\BTHPORT\Parameters\Keys\0021866b431a@f8db7fae9cce 0xD1 0x4D 0xE7 0xE8 ... Reg HKLM\SYSTEM\ControlSet012\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet012\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet012\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x04 0x35 0xAA 0xC0 ... Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib@Last Counter 74610 Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib@Last Help 74611 ---- EOF - GMER 1.0.15 ----