GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2015-12-11 16:39:28
Windows 6.1.7601 Service Pack 1 x64 
Running: tgb2jqfk.exe


---- Services - GMER 2.1 ----

Service  System32\Drivers\7317fa71cd78d09e.sys (*** hidden *** )               [BOOT] 7317fa71cd78d09e                             <-- ROOTKIT !!!

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\CurrentControlSet\services\7317fa71cd78d09e@ImagePath     \SystemRoot\System32\Drivers\7317fa71cd78d09e.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\7317fa71cd78d09e@Group         Boot Bus Extender
Reg      HKLM\SYSTEM\CurrentControlSet\services\7317fa71cd78d09e@ErrorControl  0
Reg      HKLM\SYSTEM\CurrentControlSet\services\7317fa71cd78d09e@Type          1
Reg      HKLM\SYSTEM\CurrentControlSet\services\7317fa71cd78d09e@Start         0
Reg      HKLM\SYSTEM\CurrentControlSet\services\7317fa71cd78d09e@Tag           1
Reg      HKLM\SYSTEM\CurrentControlSet\services\7317fa71cd78d09e@DisplayName   syshost.exe
Reg      HKLM\SYSTEM\CurrentControlSet\services\7317fa71cd78d09e               
Reg      HKLM\SYSTEM\ControlSet002\services\7317fa71cd78d09e@ImagePath         \SystemRoot\System32\Drivers\7317fa71cd78d09e.sys
Reg      HKLM\SYSTEM\ControlSet002\services\7317fa71cd78d09e@Group             Boot Bus Extender
Reg      HKLM\SYSTEM\ControlSet002\services\7317fa71cd78d09e@ErrorControl      0
Reg      HKLM\SYSTEM\ControlSet002\services\7317fa71cd78d09e@Type              1
Reg      HKLM\SYSTEM\ControlSet002\services\7317fa71cd78d09e@Start             0
Reg      HKLM\SYSTEM\ControlSet002\services\7317fa71cd78d09e@Tag               1
Reg      HKLM\SYSTEM\ControlSet002\services\7317fa71cd78d09e@DisplayName       syshost.exe

---- EOF - GMER 2.1 ----