GMER 2.1.19163 - http://www.gmer.net Rootkit scan 2013-09-03 23:31:20 Windows 6.0.6002 Service Pack 2 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2 WDC_WD1200BEVS-75UST0 rev.01.01A01 111,79GB Running: cs329hvp.exe; Driver: C:\Users\ORANGE\AppData\Local\Temp\fxliapog.sys ---- System - GMER 2.1 ---- INT 0x81 ? A0DBD550 INT 0x82 ? A0DBC2D0 INT 0x91 ? A0DBD7D0 INT 0xA2 ? A0DBC550 ---- Devices - GMER 2.1 ---- AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e4ce0d857 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e4ce0efb5 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e4ce0efb5@9ccad935a0ca 0x6C 0x55 0xE2 0xC4 ... Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001e4ce836f5 (not active ControlSet) Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e4ce0d857 Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e4ce0efb5 Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e4ce0efb5@9ccad935a0ca 0x6C 0x55 0xE2 0xC4 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e4ce836f5 Reg HKLM\SYSTEM\ControlSet004\Services\BTHPORT\Parameters\Keys\001e4ce0d857 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet004\Services\BTHPORT\Parameters\Keys\001e4ce0efb5 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet004\Services\BTHPORT\Parameters\Keys\001e4ce836f5 (not active ControlSet) ---- EOF - GMER 2.1 ----