PDA

View Full Version : should i pack and which script



kdd53
2010-05-27, 09:16
hello,
here are the results of a deep scan. should i be concerned about the hidden files and directories or should i pack them? which script should i use to do this? does the rest of the log look ok or do i need to pack the whole results? of course, the quick scan gives me a shorter log, but the hidden files and directories are there. i had to cut the log, because it was too long.

whenever i work on my other drives, things get slow most of the time. other than that, my system seems to run fine. spybot doesn't find anything, anti virus doesn't find anything; the only oddity is that sometimes it can't scan the signature files because it can't find them. this activity is sporadic.


// info: Rootkit removal help file
// copyright: (c) 2008-2009 Safer-Networking Ltd. All rights reserved.

:: RootAlyzer Results
File:"Hidden file","C:\WINDOWS\0.loginsta"
File:"Hidden file","C:\WINDOWS\002961_.tmplKB974392$"
File:"Hidden file","C:\WINDOWS\bcmwl.logallKB9755"
File:"Hidden file","C:\WINDOWS\Blue Lace 16.bmp5561$"
File:"Hidden file","C:\WINDOWS\bootstat.datKB975713$"
File:"Hidden file","C:\WINDOWS\clock.aviallKB9771"
File:"Hidden file","C:\WINDOWS\cmsetacl.logKB977816$"
File:"Hidden file","C:\WINDOWS\Coffee Bean.bmp77914$WM9$"
File:"Hidden file","C:\WINDOWS\COM+.logtallKB97"
File:"Hidden file","C:\WINDOWS\comsetup.logKB978251$"
File:"Hidden file","C:\WINDOWS\control.inilKB978542$"
File:"Hidden file","C:\WINDOWS\desktop.inilKB979309$"
File:"Hidden file","C:\WINDOWS\devenum.exelKB979683$"
File:"Hidden file","C:\WINDOWS\DPINST.LOGllMSCompPa"
File:"Hidden file","C:\WINDOWS\DtcInstall.logp11$04$"
File:"Hidden file","C:\WINDOWS\EPSPR1900.iniB974318$"
File:"Hidden file","C:\WINDOWS\explorer.exeKB974392$"
File:"Hidden file","C:\WINDOWS\explorer.scfKB974571$"
File:"Hidden file","C:\WINDOWS\FaxSetup.logKB975025$"
File:"Hidden file","C:\WINDOWS\FeatherTexture.bmp67$v2$"
File:"Hidden file","C:\WINDOWS\Gone Fishing.bmp5561$"
File:"Hidden file","C:\WINDOWS\Greenstone.bmp975713$"
File:"Hidden file","C:\WINDOWS\hh.exe Bean."
File:"Hidden file","C:\WINDOWS\hotcore.loglKB978037$"
File:"Hidden file","C:\WINDOWS\HPBroker.dllKB978251$"
File:"Hidden file","C:\WINDOWS\hpmonZ.exellKB978262"
File:"Hidden file","C:\WINDOWS\ICCCODES.DATizard338$WM9"
File:"Hidden file","C:\WINDOWS\icccodes.dllKB978542$"
File:"Hidden file","C:\WINDOWS\Iccsigs.datlKB978601$"
File:"Hidden file","C:\WINDOWS\ie8.log.inilKB"
File:"Hidden file","C:\WINDOWS\ie8_main.lognstallations"
File:"Hidden file","C:\WINDOWS\iis6.loged Progr"
File:"Hidden file","C:\WINDOWS\imsins.BAKheWMFDist1"
File:"Hidden file","C:\WINDOWS\imsins.log.logp11$04"
File:"Hidden file","C:\WINDOWS\ispro.icoscfKB9745"
File:"Hidden file","C:\WINDOWS\IsUninst.exeKB975025$"
File:"Hidden file","C:\WINDOWS\system32\xpssvcs.dllefestPT.dat"
File:"Hidden file","C:\WINDOWS\system32\zipfldr.dllln.dllion$l"
Directory:"Hidden directory","C:\WINDOWS\$hf_mig$??"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB889673$ll$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB951748$ll$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB951978$XPSP2$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB961501$v2$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB967715$ll$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB968816_WM9$2$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB969947$WM9$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB971468$WM11$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB971486$WM9$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB975467$v2$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB975560$ll$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB977165$WM9$2$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB977914$WM9$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB978262$WM11$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB978338$WM9$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallKB980232$WM9$"
Directory:"Hidden directory","C:\WINDOWS\$NtUninstallwmp11$04$"
Directory:"Hidden directory","C:\WINDOWS\addinsnstall"
Directory:"Hidden directory","C:\WINDOWS\AppPatchtallKB97"
Directory:"Hidden directory","C:\WINDOWS\assemblytallKB97"
Directory:"Hidden directory","C:\WINDOWS\Confignstall"
Directory:"Hidden directory","C:\WINDOWS\Connection Wizard338$WM9$"
Directory:"Hidden directory","C:\WINDOWS\CursorsstallKB"
Directory:"Hidden directory","C:\WINDOWS\Debuginsta"
Directory:"Hidden directory","C:\WINDOWS\Downloaded Installations$"
Directory:"Hidden directory","C:\WINDOWS\Driver CacheWMFDist11$"
Directory:"Hidden directory","C:\WINDOWS\ehomeinsta"
Directory:"Hidden directory","C:\WINDOWS\Fonts.loga"
Directory:"Hidden directory","C:\WINDOWS\Helpk.av"
Directory:"Hidden directory","C:\WINDOWS\Hewlett-Packard77816$"
Directory:"Hidden directory","C:\WINDOWS\ie8ugi"
Directory:"Hidden directory","C:\WINDOWS\ie8updateselKB979683"
Directory:"Hidden directory","C:\WINDOWS\imeNST"
Directory:"Hidden directory","C:\WINDOWS\infmei"
Directory:"Hidden directory","C:\WINDOWS\Installer.iniB9743"
Directory:"Hidden directory","C:\WINDOWS\javaherT"
Directory:"Hidden directory","C:\WINDOWS\l2schemasloglog786"
Directory:"Hidden directory","C:\WINDOWS\LastGood.logKB97"
Directory:"Hidden directory","C:\WINDOWS\Media165.l"
Directory:"Hidden directory","C:\WINDOWS\MetaCreationsstallations$"
Directory:"Hidden directory","C:\WINDOWS\Microsoft.NETogram Files"
Directory:"Hidden directory","C:\WINDOWS\Minidump.logMSCo"
Directory:"Hidden directory","C:\WINDOWS\msagent1.logog"
Directory:"Hidden directory","C:\WINDOWS\msapps62.log"
Directory:"Hidden directory","C:\WINDOWS\mui801"
Directory:"Hidden directory","C:\WINDOWS\network diagnostic16$"
Directory:"Hidden directory","C:\WINDOWS\Offline Web Pages306$"
Directory:"Hidden directory","C:\WINDOWS\OPTIONSC.log.l"
Directory:"Hidden directory","C:\WINDOWS\pchealthtionssta"
Directory:"Hidden directory","C:\WINDOWS\PeerNetft.NETo"
Directory:"Hidden directory","C:\WINDOWS\PrefetchckV1.log"
Directory:"Hidden directory","C:\WINDOWS\Provisioningre.bmp67$v2$"
Directory:"Hidden directory","C:\WINDOWS\RegistrationWudf01000$"
Directory:"Hidden directory","C:\WINDOWS\repair82-IE8"
Directory:"Hidden directory","C:\WINDOWS\Resourcesal.ini757"
Directory:"Hidden directory","C:\WINDOWS\securitygLLgKB97"
Directory:"Hidden directory","C:\WINDOWS\ServicePackFilesd338$WM9$"
Directory:"Hidden directory","C:\WINDOWS\SHELLNEW.dat7 So"
Directory:"Hidden directory","C:\WINDOWS\SoftwareDistribution$ll$"
Directory:"Hidden directory","C:\WINDOWS\srchasst-IE8.log"
Directory:"Hidden directory","C:\WINDOWS\Sundod"
Directory:"Hidden directory","C:\WINDOWS\systemFe Stu"
Directory:"Hidden directory","C:\WINDOWS\system32gLLgKB97"
Directory:"Hidden directory","C:\WINDOWS\Taskstmp.t"
Directory:"Hidden directory","C:\WINDOWS\Temp.tmp"
Directory:"Hidden directory","C:\WINDOWS\tiinstmp.log"
Directory:"Hidden directory","C:\WINDOWS\twain_32.logTogr"
Directory:"Hidden directory","C:\WINDOWS\WBEMPT.D"
Directory:"Hidden directory","C:\WINDOWS\Webhas"
Directory:"Hidden directory","C:\WINDOWS\WinSxS32.log"
Directory:"Hidden directory","C:\WINDOWS\system32\.m"
Directory:"Hidden directory","C:\WINDOWS\system32\..se"
Directory:"Hidden directory","C:\WINDOWS\system32\1025sPr9"
Directory:"Hidden directory","C:\WINDOWS\system32\1028ETUP"
Directory:"Hidden directory","C:\WINDOWS\system32\10310100"
Directory:"Hidden directory","C:\WINDOWS\system32\1033tec."
Directory:"Hidden directory","C:\WINDOWS\system32\1037ault"
Directory:"Hidden directory","C:\WINDOWS\system32\1041PT.D"
Directory:"Hidden directory","C:\WINDOWS\system32\1042asst"
Directory:"Hidden directory","C:\WINDOWS\system32\1054EL.B"
Directory:"Hidden directory","C:\WINDOWS\system32\2052ebug"
Directory:"Hidden directory","C:\WINDOWS\system32\3076ervc"
Directory:"Hidden directory","C:\WINDOWS\system32\3com_dmiNIxtog97"
Directory:"Hidden directory","C:\WINDOWS\system32\Adobevc.dl"
Directory:"Hidden directory","C:\WINDOWS\system32\appmgmts.dll.b"
Directory:"Hidden directory","C:\WINDOWS\system32\bitsosrv"
Directory:"Hidden directory","C:\WINDOWS\system32\CatRoot.dlllmu"
Directory:"Hidden directory","C:\WINDOWS\system32\CatRoot2ldllgbmp"
Directory:"Hidden directory","C:\WINDOWS\system32\Colortq.dl"
Directory:"Hidden directory","C:\WINDOWS\system32\Comanm"
Directory:"Hidden directory","C:\WINDOWS\system32\configg.dlla"
Directory:"Hidden directory","C:\WINDOWS\system32\dhcphare"
Directory:"Hidden directory","C:\WINDOWS\system32\DirectX.msclTo"
Directory:"Hidden directory","C:\WINDOWS\system32\dllcachellLLgni7"
Directory:"Hidden directory","C:\WINDOWS\system32\drivers.dllllg"
Directory:"Hidden directory","C:\WINDOWS\system32\DRVSTOREle1.dllp"
Directory:"Hidden directory","C:\WINDOWS\system32\endu"
Directory:"Hidden directory","C:\WINDOWS\system32\en-us.exee"
Directory:"Hidden directory","C:\WINDOWS\system32\exportresetD"
Directory:"Hidden directory","C:\WINDOWS\system32\iasPro"
Directory:"Hidden directory","C:\WINDOWS\system32\icsxmllldlll"
Directory:"Hidden directory","C:\WINDOWS\system32\IMEpfl"
Directory:"Hidden directory","C:\WINDOWS\system32\inetsrvt.dllex"
Directory:"Hidden directory","C:\WINDOWS\system32\LogFiles.axl.mui"
Directory:"Hidden directory","C:\WINDOWS\system32\Macromed.axl.mui"
Directory:"Hidden directory","C:\WINDOWS\system32\Microsoftdllod.dll"
Directory:"Hidden directory","C:\WINDOWS\system32\MsDtc.dllD"
Directory:"Hidden directory","C:\WINDOWS\system32\muiidc"
Directory:"Hidden directory","C:\WINDOWS\system32\nppdl."
Directory:"Hidden directory","C:\WINDOWS\system32\NtmsDatallll.dll"
Directory:"Hidden directory","C:\WINDOWS\system32\oobex32."
Directory:"Hidden directory","C:\WINDOWS\system32\PreInstallll.inig683"
Directory:"Hidden directory","C:\WINDOWS\system32\rasFS."
Directory:"Hidden directory","C:\WINDOWS\system32\ReinstallBackupsve_v0300.dllMode"
Directory:"Hidden directory","C:\WINDOWS\system32\Restorex.dll.m"
Directory:"Hidden directory","C:\WINDOWS\system32\scriptingxee.inig6"
Directory:"Hidden directory","C:\WINDOWS\system32\Setuptpw.d"
Directory:"Hidden directory","C:\WINDOWS\system32\ShellExt.dllfest"
Directory:"Hidden directory","C:\WINDOWS\system32\SoftwareDistributionicode.v13.0.0.ocx"
Directory:"Hidden directory","C:\WINDOWS\system32\spool.dlld"
Directory:"Hidden directory","C:\WINDOWS\system32\URTTemp0.dllll"
Directory:"Hidden directory","C:\WINDOWS\system32\usmtxfrm"
Directory:"Hidden directory","C:\WINDOWS\system32\wbemm.ex"
Directory:"Hidden directory","C:\WINDOWS\system32\winsr30."
Directory:"Hidden directory","C:\WINDOWS\system32\WTabletdllleee"
Directory:"Hidden directory","C:\WINDOWS\system32\xircomt.exel"
Directory:"Hidden directory","C:\WINDOWS\system32\XPSViewerorm.dllat"