GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-11-19 20:42:22
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e ST9160411ASG rev.DE16
Running: pkpc9teb.exe; Driver: C:\DOCUME~1\Marta\USTAWI~1\Temp\pxtdqpow.sys


---- Kernel code sections - GMER 1.0.15 ----

.text   C:\WINDOWS\system32\DRIVERS\nv4_mini.sys                                                              section is writeable [0xB8FC2360, 0x36E81D, 0xE8000020]
init    C:\WINDOWS\system32\Drivers\OEM13Afx.sys                                                              entry point in "init" section [0xB653B310]

---- Devices - GMER 1.0.15 ----

Device                                                                                                        Ntfs.sys (NT File System Driver/Microsoft Corporation)
Device                                                                                                        mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)
Device                                                                                                        B32CCD20

---- Registry - GMER 1.0.15 ----

Reg     HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4                      
Reg     HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0                   0
Reg     HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh                0x32 0x07 0xFB 0xD6 ...
Reg     HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)  
Reg     HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0                       0
Reg     HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh                    0x32 0x07 0xFB 0xD6 ...

---- EOF - GMER 1.0.15 ----