GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-08-21 01:31:32
Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST3320620AS rev.3.AAE 298,09GB
Running: f1p78kwh.exe; Driver: C:\DOCUME~1\BIW~1\USTAWI~1\Temp\pxtdqpow.sys


---- Kernel code sections - GMER 2.1 ----

.text           C:\WINDOWS\system32\DRIVERS\nv4_mini.sys                                                                  section is writeable [0xB69D13C0, 0x83D7BA, 0xE8000020]
.text           C:\WINDOWS\system32\DRIVERS\atksgt.sys                                                                    section is writeable [0xB1108300, 0x3AE88, 0xE8000020]
.text           C:\WINDOWS\system32\DRIVERS\lirsgt.sys                                                                    section is writeable [0xB83C8300, 0x1B7E, 0xE8000020]

---- User code sections - GMER 2.1 ----

.text           C:\Program Files\GameSpy\Comrade\Comrade.exe[2664] WS2_32.dll!sendto                                      71A52F51 5 Bytes  JMP 03921BB0 c:\program files\gamespy\comrade\156\DetectLib.dll
.text           C:\Program Files\GameSpy\Comrade\Comrade.exe[2664] WS2_32.dll!WSASendTo                                   71A60AAD 5 Bytes  JMP 03921BF0 c:\program files\gamespy\comrade\156\DetectLib.dll

---- Devices - GMER 2.1 ----

AttachedDevice  \FileSystem\Fastfat \Fat                                                                                  fltmgr.sys
AttachedDevice  \FileSystem\Fastfat \Fat                                                                                  fltmgr.sys

---- Registry - GMER 2.1 ----

Reg             HKLM\SYSTEM\CurrentControlSet\Control\Video\{25358DCC-756B-4AC4-B68F-BF1C7A85730C}\0000@D3D_\x3332\x3331  2089309684
Reg             HKLM\SYSTEM\ControlSet003\Control\Video\{25358DCC-756B-4AC4-B68F-BF1C7A85730C}\0000@D3D_\x3332\x3331      2089309684
Reg             HKLM\SYSTEM\ControlSet004\Control\Video\{25358DCC-756B-4AC4-B68F-BF1C7A85730C}\0000@D3D_\x3332\x3331      2089309684

---- EOF - GMER 2.1 ----