GMER 2.0.18454 - http://www.gmer.net
Rootkit scan 2013-02-13 12:18:41
Windows 6.0.6000  
Running: pxup9c09.exe


---- Services - GMER 2.0 ----

Service  C:\SystemRoot\System32\Drivers\226279337cc34ef5.sys (*** hidden *** )  [BOOT] 226279337cc34ef5                             <-- ROOTKIT !!!

---- Registry - GMER 2.0 ----

Reg      HKLM\SYSTEM\CurrentControlSet\Services\226279337cc34ef5@ImagePath      \SystemRoot\System32\Drivers\226279337cc34ef5.sys
Reg      HKLM\SYSTEM\CurrentControlSet\Services\226279337cc34ef5@Group          Boot Bus Extender
Reg      HKLM\SYSTEM\CurrentControlSet\Services\226279337cc34ef5@ErrorControl   0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\226279337cc34ef5@Type           1
Reg      HKLM\SYSTEM\CurrentControlSet\Services\226279337cc34ef5@Start          0
Reg      HKLM\SYSTEM\CurrentControlSet\Services\226279337cc34ef5@Tag            1
Reg      HKLM\SYSTEM\CurrentControlSet\Services\226279337cc34ef5@DisplayName    kedxalekcyfy.exe
Reg      HKLM\SYSTEM\ControlSet007\Services\226279337cc34ef5@ImagePath          \SystemRoot\System32\Drivers\226279337cc34ef5.sys
Reg      HKLM\SYSTEM\ControlSet007\Services\226279337cc34ef5@Group              Boot Bus Extender
Reg      HKLM\SYSTEM\ControlSet007\Services\226279337cc34ef5@ErrorControl       0
Reg      HKLM\SYSTEM\ControlSet007\Services\226279337cc34ef5@Type               1
Reg      HKLM\SYSTEM\ControlSet007\Services\226279337cc34ef5@Start              0
Reg      HKLM\SYSTEM\ControlSet007\Services\226279337cc34ef5@Tag                1
Reg      HKLM\SYSTEM\ControlSet007\Services\226279337cc34ef5@DisplayName        kedxalekcyfy.exe

---- EOF - GMER 2.0 ----