GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-09-05 14:28:53
Windows 5.1.2600 Service Pack 3
Running: gmer.exe; Driver: C:\DOCUME~1\user\LOCALS~1\Temp\kwpyykow.sys


---- Kernel code sections - GMER 1.0.15 ----

?               ueyoyft.sys                                                                                The system cannot find the file specified. !
.text           C:\WINDOWS\system32\DRIVERS\nv4_mini.sys                                                   section is writeable [0xB8F15360, 0x37388D, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text           C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe[676] USER32.dll!BeginPaint  7E428FE9 5 Bytes  JMP 103B13C0 C:\Program Files\Veoh Networks\VeohWebPlayer\QtWebKit4.dll
.text           C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe[676] USER32.dll!EndPaint    7E428FFD 5 Bytes  JMP 103B1430 C:\Program Files\Veoh Networks\VeohWebPlayer\QtWebKit4.dll
.text           C:\WINDOWS\System32\svchost.exe[1464] USER32.dll!GetCursorPos                              7E42974E 5 Bytes  JMP 00F1000A 
.text           C:\WINDOWS\System32\svchost.exe[1464] ole32.dll!CoCreateInstance                           7750057E 5 Bytes  JMP 00F0000A 

---- Devices - GMER 1.0.15 ----

Device                                                                                                     Ntfs.sys (NT File System Driver/Microsoft Corporation)
Device                                                                                                     Fastfat.SYS (Fast FAT File System Driver/Microsoft Corporation)
Device                                                                                                     mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)

AttachedDevice                                                                                             fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

Device          \FileSystem\Cdfs \Cdfs                                                                     DLAIFS_M.SYS (Drive Letter Access Component/Sonic Solutions)

---- Registry - GMER 1.0.15 ----

Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL@               
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL@Installed      1
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI@                
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI@Installed       1
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI@NoChange        1
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS@                
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS@Installed       1

---- EOF - GMER 1.0.15 ----