Выполните скрипт в AVZ:
Код:
begin
TerminateProcessByName('C:\Temp\sys doc\slihost.exe');
TerminateProcessByName('c:\programdata\iepluginservices\pluginservice.exe');
TerminateProcessByName('c:\programdata\windowsprotectmanger\wprotectmanager.exe');
TerminateProcessByName('c:\temp\sys doc\5\vertminer.exe');
TerminateProcessByName('c:\program files (x86)\greener web\updategreenerweb.exe');
TerminateProcessByName('C:\Temp\sys doc\4\ompher.exe');
TerminateProcessByName('c:\program files (x86)\greener web\greenerweb.firstrun.exe');
TerminateProcessByName('C:\Temp\sys doc\5.exe');
TerminateProcessByName('C:\Temp\sys doc\4.exe');
QuarantineFile('C:\Program Files (x86)\SupTab\SupTab.dll','');
QuarantineFile('C:\Program Files (x86)\Greener Web\GreenerWebbho.dll','');
QuarantineFile('C:\PROGRA~2\SupTab\SEARCH~2.DLL','');
QuarantineFile('C:\PROGRA~2\SupTab\SEARCH~1.DLL','');
QuarantineFile('C:\Program Files (x86)\SupTab\DpInterface32.dll','');
QuarantineFile('C:\Temp\sys doc\slihost.exe','');
QuarantineFile('c:\programdata\iepluginservices\pluginservice.exe','');
QuarantineFile('c:\programdata\windowsprotectmanger\wprotectmanager.exe','');
QuarantineFile('c:\temp\sys doc\5\vertminer.exe','');
QuarantineFile('c:\program files (x86)\greener web\updategreenerweb.exe','');
QuarantineFile('C:\Temp\sys doc\4\ompher.exe','');
QuarantineFile('c:\program files (x86)\greener web\greenerweb.firstrun.exe','');
QuarantineFile('C:\Temp\sys doc\5.exe','');
QuarantineFile('C:\Temp\sys doc\4.exe','');
DeleteFile('C:\Temp\sys doc\4.exe','32');
DeleteFile('C:\Temp\sys doc\5.exe','32');
DeleteFile('c:\program files (x86)\greener web\greenerweb.firstrun.exe','32');
DeleteFile('C:\Temp\sys doc\4\ompher.exe','32');
DeleteFile('c:\program files (x86)\greener web\updategreenerweb.exe','32');
DeleteFile('c:\temp\sys doc\5\vertminer.exe','32');
DeleteFile('c:\programdata\windowsprotectmanger\wprotectmanager.exe','32');
DeleteFile('c:\programdata\iepluginservices\pluginservice.exe','32');
DeleteFile('C:\Temp\sys doc\slihost.exe','32');
DeleteFile('C:\Program Files (x86)\SupTab\DpInterface32.dll','32');
DeleteFile('C:\Temp\sys doc\5\libcurl.dll','32');
DeleteFile('C:\Temp\sys doc\5\libgcc_s_dw2-1.dll','32');
DeleteFile('C:\Temp\sys doc\5\pthreadGC2.dll','32');
DeleteFile('C:\PROGRA~2\SupTab\SEARCH~1.DLL','32');
DeleteFile('C:\PROGRA~2\SupTab\SEARCH~2.DLL','32');
DeleteFile('C:\Program Files (x86)\Greener Web\GreenerWebbho.dll','32');
DeleteFile('C:\Program Files (x86)\SupTab\SupTab.dll','32');
DeleteFile('C:\Windows\system32\Tasks\rygatag','64');
DelBHO('{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}');
DelBHO('{1973d53b-7311-45d7-8270-f44571c041a0}');
DeleteService('cugunvqr');
DeleteFileMask('C:\Program Files (x86)\SupTab','*',true);
DeleteFileMask('C:\Program Files (x86)\Greener Web','*',true);
DeleteFileMask('C:\Temp\sys doc','*',true);
DeleteDirectory('C:\Program Files (x86)\SupTab');
DeleteDirectory('C:\Program Files (x86)\Greener Web');
DeleteDirectory('C:\Temp\sys doc');
ExecuteSysClean;
ExecuteRepair(3);
ExecuteRepair(4);
ExecuteWizard('SCU',2,2,true);
RebootWindows(true);
end.
Компьютер перезагрузится.
Выполните в AVZ скрипт:
Код:
begin
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
end.
В папке с AVZ появится архив карантина quarantine.zip, отправьте этот файл по ссылке "Прислать запрошенный карантин" над над первым сообщением в теме.
Выполните 2-й стандартный скрипт в AVZ и прикрепите к своему следующему сообщению файл virusinfo_syscheck.zip.
Сделайте лог AdwCleaner (by Xplode).