Сообщение от
jaiboy
I have 4 files that cannot be cleaned by Kaspersky such as
You have some more as 4 files
- Go Off-Line
Switch off:
- Antivirus and and, if you have - Firewall.
- System Restore
- Execute following script
Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
DelBHO('{6B1AEF69-DDAE-FDAD-DCAB-698F026ABDB6}');
DelBHO('{7FD45A54-9875-698F-E56E-65102358FDF7}');
DelBHO('{87FD640A-158F-48AC-FD14-1597F14A9778}');
DelBHO('{9C69034A-F45F-D34D-A33A-C33C4D324FC9}');
DelBHO('{AA59145F-315D-BC23-AC1F-145DF81A34AA}');
DelBHO('{B490415F-65F8-B5C5-D8BA-9405FB12054B}');
DelBHO('{57AC9076-C898-B098-D098-A18319080975}');
DelBHO('{55694105-5108-9405-3695-954187462155}');
DelBHO('{50940F85-F015-14F1-A05F-F69858AC6D05}');
DelBHO('{4A908760-8000-4000-A000-9000322145A4}');
DelBHO('{4A698102-5904-AFD0-20DF-CD1A65829CA4}');
DelBHO('{43512378-9874-5641-1025-985420368734}');
DelBHO('{3D698451-2015-6358-9871-2015987452D3}');
DelBHO('{39109876-7619-9101-7012-901938475193}');
DelBHO('{35671234-7890-ABCD-CDEF-567801237653}');
DelBHO('{32596546-2036-9451-6058-658402589723}');
DelBHO('{2B69874A-C58C-458D-69F0-698F874E41B2}');
DelBHO('{20909876-4567-3908-4056-909834565102}');
QuarantineFile('C:\WINDOWS\system32\oswxdttb.dll','');
QuarantineFile('C:\Temp\aspi32.exe','');
QuarantineFile('C:\WINDOWS\system32\apzhctde.dll','');
QuarantineFile('C:\WINDOWS\system32\mpwdeapi.dll','');
QuarantineFile('C:\WINDOWS\system32\yxcschlp.dll','');
QuarantineFile('C:\WINDOWS\system32\zptlcsys.dll','');
QuarantineFile('yzztlmsn.dll','');
QuarantineFile('ietzcpaq.dll','');
QuarantineFile('C:\WINDOWS\system32\erxybloe.dll','');
QuarantineFile('C:\WINDOWS\system32\lassaplo.dll','');
QuarantineFile('C:\WINDOWS\system32\opshcbty.dll','');
QuarantineFile('C:\WINDOWS\system32\zycbdime.dll','');
QuarantineFile('C:\WINDOWS\system32\zyzxjime.dll','');
QuarantineFile('C:\WINDOWS\system32\mndshsrv.dll','');
QuarantineFile('C:\WINDOWS\system32\apsggjba.dll','');
QuarantineFile('C:\WINDOWS\system32\oohxebyt.dll','');
QuarantineFile('C:\WINDOWS\system32\Drivers\utyymzk4.sys','');
QuarantineFile('C:\WINDOWS\system32\yzztlmsn.dll','');
QuarantineFile('C:\WINDOWS\system32\akjsdkaq.dll','');
QuarantineFile('C:\WINDOWS\system32\ietzcpaq.dll','');
QuarantineFile('C:\WINDOWS\system32\arjrgler.dll','');
QuarantineFile('C:\WINDOWS\system32\nhmxejkl.dll','');
DeleteFile('C:\WINDOWS\system32\nhmxejkl.dll');
DeleteFile('C:\WINDOWS\system32\arjrgler.dll');
DeleteFile('C:\WINDOWS\system32\ietzcpaq.dll');
DeleteFile('C:\WINDOWS\system32\akjsdkaq.dll');
DeleteFile('C:\WINDOWS\system32\yzztlmsn.dll');
DeleteFile('C:\WINDOWS\system32\Drivers\utyymzk4.sys');
DeleteFile('C:\WINDOWS\system32\oohxebyt.dll');
DeleteFile('C:\WINDOWS\system32\apsggjba.dll');
DeleteFile('C:\WINDOWS\system32\mndshsrv.dll');
DeleteFile('C:\WINDOWS\system32\zyzxjime.dll');
DeleteFile('C:\WINDOWS\system32\mpwdeapi.dll');
DeleteFile('C:\WINDOWS\system32\zptlcsys.dll');
DeleteFile('C:\WINDOWS\system32\zycbdime.dll');
DeleteFile('C:\WINDOWS\system32\oswxdttb.dll');
DeleteFile('C:\WINDOWS\system32\apzhctde.dll');
DeleteFile('C:\WINDOWS\system32\yxcschlp.dll');
DeleteFile('C:\WINDOWS\system32\opshcbty.dll');
DeleteFile('C:\WINDOWS\system32\lassaplo.dll');
DeleteFile('C:\WINDOWS\system32\erxybloe.dll');
DeleteFile('ietzcpaq.dll');
DeleteFile('nhmxejkl.dll');
DeleteFile('yzztlmsn.dll');
DeleteFile('akjsdkaq.dll');
DeleteFile('C:\Temp\aspi32.exe');
BC_ImportDeletedList;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
After reboot:
- Clean Temp-Maps, Cache of Browsers, Recycler. Use Windows service tool cleanmgr or CCleaner or ClearProg
- Close all the programs and start only Internet Explorer!!!
- Repeat 3 log files in accordance with the rules.
- Switch Antivirus and, if you have - Firewall, on.
- Go On-Line
- Upload the quarantine over the red link on th etop of this page.
- Attach 3 logs to your new post..