GMER 2.1.19355 - http://www.gmer.net
Rootkit scan 2014-03-13 13:52:47
Windows 6.1.7601 Service Pack 1 
Running: 5dn94k4h.exe


---- Services - GMER 2.1 ----

Service  System32\Drivers\28925ee982f322e5.sys (*** hidden *** )               [BOOT] 28925ee982f322e5                             <-- ROOTKIT !!!

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\CurrentControlSet\services\28925ee982f322e5@ImagePath     \SystemRoot\System32\Drivers\28925ee982f322e5.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\28925ee982f322e5@Group         Boot Bus Extender
Reg      HKLM\SYSTEM\CurrentControlSet\services\28925ee982f322e5@ErrorControl  0
Reg      HKLM\SYSTEM\CurrentControlSet\services\28925ee982f322e5@Type          1
Reg      HKLM\SYSTEM\CurrentControlSet\services\28925ee982f322e5@Start         0
Reg      HKLM\SYSTEM\CurrentControlSet\services\28925ee982f322e5@Tag           1
Reg      HKLM\SYSTEM\CurrentControlSet\services\28925ee982f322e5@DisplayName   doru.exe
Reg      HKLM\SYSTEM\CurrentControlSet\services\28925ee982f322e5               
Reg      HKLM\SYSTEM\ControlSet002\services\28925ee982f322e5@ImagePath         \SystemRoot\System32\Drivers\28925ee982f322e5.sys
Reg      HKLM\SYSTEM\ControlSet002\services\28925ee982f322e5@Group             Boot Bus Extender
Reg      HKLM\SYSTEM\ControlSet002\services\28925ee982f322e5@ErrorControl      0
Reg      HKLM\SYSTEM\ControlSet002\services\28925ee982f322e5@Type              1
Reg      HKLM\SYSTEM\ControlSet002\services\28925ee982f322e5@Start             0
Reg      HKLM\SYSTEM\ControlSet002\services\28925ee982f322e5@Tag               1
Reg      HKLM\SYSTEM\ControlSet002\services\28925ee982f322e5@DisplayName       doru.exe

---- EOF - GMER 2.1 ----