GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-08-01 13:51:25
Windows 5.1.2600 Dodatek Service Pack 3 
Running: o3kyx6vb.exe


---- Services - GMER 2.1 ----

Service  C:\WINDOWS\System32\Drivers\631e1f68bd7ed84c.sys (*** hidden *** )    [BOOT] 631e1f68bd7ed84c                             <-- ROOTKIT !!!

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\CurrentControlSet\Services\631e1f68bd7ed84c@ImagePath     \SystemRoot\System32\Drivers\631e1f68bd7ed84c.sys
Reg      HKLM\SYSTEM\CurrentControlSet\Services\631e1f68bd7ed84c@Group         Boot Bus Extender
Reg      HKLM\SYSTEM\CurrentControlSet\Services\631e1f68bd7ed84c@ErrorControl  0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\631e1f68bd7ed84c@Type          1
Reg      HKLM\SYSTEM\CurrentControlSet\Services\631e1f68bd7ed84c@Start         0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\631e1f68bd7ed84c@Tag           1
Reg      HKLM\SYSTEM\CurrentControlSet\Services\631e1f68bd7ed84c@DisplayName   syshost.exe
Reg      HKLM\SYSTEM\CurrentControlSet\Services\631e1f68bd7ed84c               
Reg      HKLM\SYSTEM\ControlSet004\Services\631e1f68bd7ed84c@ImagePath         \SystemRoot\System32\Drivers\631e1f68bd7ed84c.sys
Reg      HKLM\SYSTEM\ControlSet004\Services\631e1f68bd7ed84c@Group             Boot Bus Extender
Reg      HKLM\SYSTEM\ControlSet004\Services\631e1f68bd7ed84c@ErrorControl      0
Reg      HKLM\SYSTEM\ControlSet004\Services\631e1f68bd7ed84c@Type              1
Reg      HKLM\SYSTEM\ControlSet004\Services\631e1f68bd7ed84c@Start             0
Reg      HKLM\SYSTEM\ControlSet004\Services\631e1f68bd7ed84c@Tag               1
Reg      HKLM\SYSTEM\ControlSet004\Services\631e1f68bd7ed84c@DisplayName       syshost.exe

---- EOF - GMER 2.1 ----