********************************* ROOTCHK-(5-12-07)-LOG, by ejvindh
22.12.2007 18:22:09,29

The rootkits that are detected by this tool were not found.

********************************* ROOTCHK-LOG-end


catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-22 18:22:09
Windows 5.1.2600 Service Pack 2
detected NTDLL code modification:
ZwClose
scanning hidden processes ...
IPC error: 2 The system cannot find the file specified.

detected NTDLL code modification:
ZwClose
scanning hidden services & system hive ...
IPC error: 2 The system cannot find the file specified.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\d347prt\Cfg\0Jf40]
"khjeh"=hex:20,02,00,00,86,db,20,68,62,fb,33,b9,42,48,57,2a,f8,4b,6d,9d,46,..
"hj34z0"=hex:04,ac,0c,f0,bd,10,41,5e,ed,10,76,e9,d2,2b,d5,f2,52,04,0d,eb,95,..
"hj34z1"=hex:55,27,0e,f0,95,15,41,5e,ec,10,7b,e9,d3,2b,d5,f2,52,04,0d,eb,41,..
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\d347prt\Cfg\0Jf41]
"khjeh"=hex:20,02,00,00,86,db,20,68,5e,81,5d,5c,42,48,57,2a,5c,40,6d,9d,46,..
"hj34z0"=hex:24,af,0c,f0,8d,13,41,5e,ed,10,6b,e9,d2,2b,d5,f2,52,04,0d,eb,ff,..
"hj34z1"=hex:30,f9,0e,f0,95,15,41,5e,ec,10,7b,e9,d3,2b,d5,f2,52,04,0d,eb,41,..
"hj34z2"=hex:56,e4,6d,9b,f0,35,0d,31,9a,75,62,a3,53,28,d8,fd,72,50,62,cb,18,..
"hj34z3"=hex:56,fd,0c,a8,15,18,00,59,83,30,36,88,b8,4e,f5,be,3d,72,68,cb,d4,..

detected NTDLL code modification:
ZwClose
scanning hidden registry entries ...

detected NTDLL code modification:
ZwClose
scanning hidden files ...
IPC error: 2 The system cannot find the file specified.

hidden processes: 0
hidden services: 0
hidden files: 0