Rootkitrevealer
Napsal: 18 čer 2010 22:24
Zdravím, mohl by mi někdo poradit co s tím?
HKLM\SECURITY\Policy\Secrets\SAC* 4.9.2006 16:40 0 bytes Key name contains embedded nulls (*)
HKLM\SECURITY\Policy\Secrets\SAI* 4.9.2006 16:40 0 bytes Key name contains embedded nulls (*)
HKLM\SOFTWARE\Swearware\backup\winsock2 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000013 18.5.2010 0:30 0 bytes Security mismatch.
C:\Documents and Settings\Admin_2\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\cookies.sqlite-journal 18.6.2010 23:05 6.55 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\sessionstore.js 18.6.2010 23:05 53.93 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\0EBF8B58d01 18.6.2010 23:05 26.60 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\293A9671d01 18.6.2010 23:13 32.27 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\302EB352d01 18.6.2010 23:04 17.16 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\35B77EADd01 18.6.2010 23:04 16.42 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\377A10BDd01 18.6.2010 23:13 17.55 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\3D60D8B5d01 18.6.2010 23:13 38.59 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\479F02EEd01 18.6.2010 23:04 20.57 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\4CE2321Ad01 18.6.2010 23:04 22.63 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\4F0E3B97d01 18.6.2010 23:05 18.13 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\4F8A5B45d01 18.6.2010 23:15 100.45 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\62621121d01 18.6.2010 23:04 30.82 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\6A187718d01 18.6.2010 23:15 35.95 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\757E3043d01 18.6.2010 23:04 32.49 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\7BF943B7d01 18.6.2010 23:05 23.38 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\8DF69B2Ed01 18.6.2010 23:15 31.84 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\9E12D8E1d01 18.6.2010 23:05 20.57 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\A07574EEd01 18.6.2010 23:04 38.41 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\AC086888d01 18.6.2010 23:04 28.58 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\B95B8CF5d01 18.6.2010 23:05 35.66 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\BF910A4Ed01 18.6.2010 23:13 23.68 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\C59F11FFd01 18.6.2010 23:05 34.29 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\D74696DDd01 18.6.2010 23:15 29.38 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\F04C1E47d01 18.6.2010 23:15 20.72 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\F095EE3Cd01 18.6.2010 23:13 45.53 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\FF01746Ad01 18.6.2010 23:15 17.68 KB Hidden from Windows API.
C:\System Volume Information\_restore{6C26E0F2-205A-400B-AED3-19939A092B78}\RP37\A0004909.ver 18.6.2010 23:19 92.24 KB Hidden from Windows API.
C:\System Volume Information\_restore{6C26E0F2-205A-400B-AED3-19939A092B78}\RP37\A0004910.ver 18.6.2010 23:19 92.24 KB Hidden from Windows API.
C:\System Volume Information\_restore{6C26E0F2-205A-400B-AED3-19939A092B78}\RP37\A0004911.ver 18.6.2010 23:19 92.24 KB Hidden from Windows API.
HKLM\SECURITY\Policy\Secrets\SAC* 4.9.2006 16:40 0 bytes Key name contains embedded nulls (*)
HKLM\SECURITY\Policy\Secrets\SAI* 4.9.2006 16:40 0 bytes Key name contains embedded nulls (*)
HKLM\SOFTWARE\Swearware\backup\winsock2 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012 18.5.2010 0:30 0 bytes Security mismatch.
HKLM\SOFTWARE\Swearware\backup\winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000013 18.5.2010 0:30 0 bytes Security mismatch.
C:\Documents and Settings\Admin_2\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\cookies.sqlite-journal 18.6.2010 23:05 6.55 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\sessionstore.js 18.6.2010 23:05 53.93 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\0EBF8B58d01 18.6.2010 23:05 26.60 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\293A9671d01 18.6.2010 23:13 32.27 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\302EB352d01 18.6.2010 23:04 17.16 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\35B77EADd01 18.6.2010 23:04 16.42 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\377A10BDd01 18.6.2010 23:13 17.55 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\3D60D8B5d01 18.6.2010 23:13 38.59 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\479F02EEd01 18.6.2010 23:04 20.57 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\4CE2321Ad01 18.6.2010 23:04 22.63 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\4F0E3B97d01 18.6.2010 23:05 18.13 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\4F8A5B45d01 18.6.2010 23:15 100.45 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\62621121d01 18.6.2010 23:04 30.82 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\6A187718d01 18.6.2010 23:15 35.95 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\757E3043d01 18.6.2010 23:04 32.49 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\7BF943B7d01 18.6.2010 23:05 23.38 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\8DF69B2Ed01 18.6.2010 23:15 31.84 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\9E12D8E1d01 18.6.2010 23:05 20.57 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\A07574EEd01 18.6.2010 23:04 38.41 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\AC086888d01 18.6.2010 23:04 28.58 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\B95B8CF5d01 18.6.2010 23:05 35.66 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\BF910A4Ed01 18.6.2010 23:13 23.68 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\C59F11FFd01 18.6.2010 23:05 34.29 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\D74696DDd01 18.6.2010 23:15 29.38 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\F04C1E47d01 18.6.2010 23:15 20.72 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\F095EE3Cd01 18.6.2010 23:13 45.53 KB Hidden from Windows API.
C:\Documents and Settings\Admin_2\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\ayliqdb7.default\Cache\FF01746Ad01 18.6.2010 23:15 17.68 KB Hidden from Windows API.
C:\System Volume Information\_restore{6C26E0F2-205A-400B-AED3-19939A092B78}\RP37\A0004909.ver 18.6.2010 23:19 92.24 KB Hidden from Windows API.
C:\System Volume Information\_restore{6C26E0F2-205A-400B-AED3-19939A092B78}\RP37\A0004910.ver 18.6.2010 23:19 92.24 KB Hidden from Windows API.
C:\System Volume Information\_restore{6C26E0F2-205A-400B-AED3-19939A092B78}\RP37\A0004911.ver 18.6.2010 23:19 92.24 KB Hidden from Windows API.
stejně si za chvilku asi budeme povídat v nováčcích 