Pls. fix.
Код:
O4 - HKLM\..\Run: [IEXPLORER] C:\WINDOWS\system32\iexplorer.exe
O4 - HKCU\..\Run: [svcshare] C:\WINDOWS\system32\drivers\svchast.exe
Run a script
Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('D:\explorer.exe','');
QuarantineFile('D:\autorun.inf','');
QuarantineFile('C:\explorer.exe','');
QuarantineFile('C:\WINDOWS\system32\wuauc1t.exe','');
QuarantineFile('C:\autorun.inf','');
QuarantineFile('C:\Documents and Settings\sgc\Bureau\AGLIALFATRON\TRAVAIL\annulation 2007\DBASE.COM','');
QuarantineFile('Explorer.exe taskmger.com','');
QuarantineFile('C:\WINDOWS\system32\drivers\svchast.exe','');
QuarantineFile('C:\WINDOWS\system32\iexplorer.exe','');
TerminateProcessByName('c:\windows\system32\iexplorer.exe');
QuarantineFile('c:\windows\system32\iexplorer.exe','');
DeleteFile('c:\windows\system32\iexplorer.exe');
DeleteFile('C:\WINDOWS\system32\iexplorer.exe');
DeleteFile('C:\WINDOWS\system32\drivers\svchast.exe');
DeleteFile('Explorer.exe taskmger.com');
DeleteFile('C:\autorun.inf');
DeleteFile('C:\WINDOWS\system32\wuauc1t.exe');
DeleteFile('C:\explorer.exe');
DeleteFile('D:\autorun.inf');
DeleteFile('D:\explorer.exe');
BC_ImportDeletedList;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
Upload the quarantine and make the new logs.
EDIT: My script ist larger