OTL
http://www.wklej.org/id/434471/
http://www.wklej.org/id/434474/
GMER
http://www.wklej.org/id/434512/
DRV - [2010-10-27 18:10:29 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
:OTL
O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-19..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found
O33 - MountPoints2\{a5d0a1ec-d481-11df-b7eb-0050fceb122e}\Shell\AutoRun\command - "" = m1eqos3.exe
O33 - MountPoints2\{a5d0a1ec-d481-11df-b7eb-0050fceb122e}\Shell\open\Command - "" = m1eqos3.exe
O4 - HKU\S-1-5-21-1085031214-861567501-1801674531-1003..\Run: [JP595IR86O] C:\Documents and Settings\Ja\Ustawienia lokalne\Temp\Lhr.exe (Windows (R) Codename Longhorn DDK provider)
:Files
C:\Documents and Settings\Ja\Ustawienia lokalne\Temp\Lht.exe
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
C:\WINDOWS\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
C:\WINDOWS\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
C:\WINDOWS\tasks\ywuyw.job
C:\WINDOWS\Lzuveb.exe
C:\WINDOWS\Lzuvea.exe
:REG
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]
:Commands
[emptytemp]
[emptyflash]
[clearallrestorepoints]
C:\WINDOWS\System32\drivers\ackmnvpt.sys
Clam Av 2010-12-09 BC.Heuristics.Rootkit.B-9.MV
Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 8 gości