GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-11-15 09:08:55 Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\000000a4 FUJITSU_ rev.1.89 Running: 3322j6ix.exe; Driver: C:\Users\Marta\AppData\Local\Temp\kwddiaow.sys ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186742203 Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186742203@001e45bcaab7 0xE9 0xEA 0x42 0x32 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186742203@001c35697ef6 0x3E 0x52 0xA3 0xA2 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186742203@0021193221d3 0x02 0xE1 0x5C 0x45 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186742203@34c3acdccb3b 0xD8 0x87 0x11 0x42 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186742203@e8e5d60ab8a0 0x6B 0xAE 0xF6 0x44 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186742203@64a7694a8c01 0xE2 0x2F 0xC5 0xB3 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186742203@303926689535 0xC9 0xC6 0xA6 0x91 ... Reg HKLM\SYSTEM\ControlSet006\Services\BTHPORT\Parameters\Keys\002186742203 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet006\Services\BTHPORT\Parameters\Keys\002186742203@001e45bcaab7 0xE9 0xEA 0x42 0x32 ... Reg HKLM\SYSTEM\ControlSet006\Services\BTHPORT\Parameters\Keys\002186742203@001c35697ef6 0x3E 0x52 0xA3 0xA2 ... Reg HKLM\SYSTEM\ControlSet006\Services\BTHPORT\Parameters\Keys\002186742203@0021193221d3 0x02 0xE1 0x5C 0x45 ... Reg HKLM\SYSTEM\ControlSet006\Services\BTHPORT\Parameters\Keys\002186742203@34c3acdccb3b 0xD8 0x87 0x11 0x42 ... Reg HKLM\SYSTEM\ControlSet006\Services\BTHPORT\Parameters\Keys\002186742203@e8e5d60ab8a0 0x6B 0xAE 0xF6 0x44 ... Reg HKLM\SYSTEM\ControlSet006\Services\BTHPORT\Parameters\Keys\002186742203@64a7694a8c01 0xE2 0x2F 0xC5 0xB3 ... Reg HKLM\SYSTEM\ControlSet006\Services\BTHPORT\Parameters\Keys\002186742203@303926689535 0xC9 0xC6 0xA6 0x91 ... Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@C:\Program Files\EA GAMES\The Sims 2 Moda z H&M\xae Akcesoria\eauninstall.exe 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@C:\Program Files\EA GAMES\The Sims 2 Na\xa0studiach\eauninstall.exe 1 ---- EOF - GMER 1.0.15 ----