GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-11-22 12:57:10
Windows 5.1.2600 Dodatek Service Pack 3 
Running: 61qn21qq.exe


---- Services - GMER 1.0.15 ----

Service  C:\WINDOWS\System32\Drivers\a1590beefbb9e269.sys (*** hidden *** )    [BOOT] a1590beefbb9e269                             <-- ROOTKIT !!!

---- Registry - GMER 1.0.15 ----

Reg      HKLM\SYSTEM\CurrentControlSet\Services\a1590beefbb9e269@ImagePath     \SystemRoot\System32\Drivers\a1590beefbb9e269.sys
Reg      HKLM\SYSTEM\CurrentControlSet\Services\a1590beefbb9e269@Group         Boot Bus Extender
Reg      HKLM\SYSTEM\CurrentControlSet\Services\a1590beefbb9e269@ErrorControl  0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\a1590beefbb9e269@Type          1
Reg      HKLM\SYSTEM\CurrentControlSet\Services\a1590beefbb9e269@Start         0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\a1590beefbb9e269@Tag           1
Reg      HKLM\SYSTEM\CurrentControlSet\Services\a1590beefbb9e269@DisplayName   syshost.exe
Reg      HKLM\SYSTEM\ControlSet002\Services\a1590beefbb9e269@ImagePath         \SystemRoot\System32\Drivers\a1590beefbb9e269.sys
Reg      HKLM\SYSTEM\ControlSet002\Services\a1590beefbb9e269@Group             Boot Bus Extender
Reg      HKLM\SYSTEM\ControlSet002\Services\a1590beefbb9e269@ErrorControl      0
Reg      HKLM\SYSTEM\ControlSet002\Services\a1590beefbb9e269@Type              1
Reg      HKLM\SYSTEM\ControlSet002\Services\a1590beefbb9e269@Start             0
Reg      HKLM\SYSTEM\ControlSet002\Services\a1590beefbb9e269@Tag               1
Reg      HKLM\SYSTEM\ControlSet002\Services\a1590beefbb9e269@DisplayName       syshost.exe

---- EOF - GMER 1.0.15 ----