GMER 2.1.19115 - http://www.gmer.net Rootkit quick scan 2013-02-28 03:05:59 Windows 5.1.2600 Service Pack 2 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-8 ST3500320AS rev.SD15 465,76GB Running: gmer.exe; Driver: C:\DOCUME~1\kicia\LOCALS~1\Temp\pgtdapow.sys ---- Disk sectors - GMER 2.1 ---- Disk \Device\Harddisk0\DR0 unknown MBR code ---- System - GMER 2.1 ---- SSDT spmn.sys ZwEnumerateKey [0xB9EC5CA4] SSDT spmn.sys ZwEnumerateValueKey [0xB9EC6032] ---- Devices - GMER 2.1 ---- Device \Driver\atapi \Device\Ide\IdePort0 8AD191F8 Device \Driver\atapi \Device\Ide\IdePort1 8AD191F8 Device \Driver\atapi \Device\Ide\IdePort2 8AD191F8 Device \Driver\atapi \Device\Ide\IdePort3 8AD191F8 Device \Driver\atapi \Device\Ide\IdeDeviceP3T1L0-10 8AD191F8 Device \Driver\atapi \Device\Ide\IdeDeviceP3T0L0-8 8AD191F8 Device \FileSystem\Ntfs \Ntfs 8AD181F8 AttachedDevice \FileSystem\Ntfs \Ntfs kisknl.sys (Kingsoft Internet Security Sandbox kernel/Kingsoft Corporation) Device \FileSystem\Fastfat \Fat 8A590500 AttachedDevice \FileSystem\Fastfat \Fat kisknl.sys (Kingsoft Internet Security Sandbox kernel/Kingsoft Corporation) AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) AttachedDevice \Driver\Tcpip \Device\Ip kdhacker.sys (Kingsoft Firewall TdiFilter Driver/Kingsoft Corporation) AttachedDevice \Driver\Tcpip \Device\Tcp kdhacker.sys (Kingsoft Firewall TdiFilter Driver/Kingsoft Corporation) AttachedDevice \Driver\Tcpip \Device\Udp kdhacker.sys (Kingsoft Firewall TdiFilter Driver/Kingsoft Corporation) AttachedDevice \Driver\Tcpip \Device\RawIp kdhacker.sys (Kingsoft Firewall TdiFilter Driver/Kingsoft Corporation) ---- EOF - GMER 2.1 ----