Hello.
execute the script:
Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('C:\WINDOWS\Tasks\A78034C191D3AFC1.job','');
QuarantineFile('C:\WINDOWS\Installer\14b01f.msi','');
QuarantineFile('C:\Program Files\Common Files\Windows Live\.cache\64559f901c992c7\fssclient_x86.msi','');
QuarantineFile('C:\Program Files\Common Files\Windows Live\.cache\4bd9a4dc1c971e0\fssclient_x86.msi','');
QuarantineFile('c:\docume~1\christ~1\applic~1\slowbe~1\Ooze sect five.exe','');
DeleteFile('c:\docume~1\christ~1\applic~1\slowbe~1\Ooze sect five.exe');
BC_DeleteFile('c:\docume~1\christ~1\applic~1\slowbe~1\Ooze sect five.exe');
DeleteFile('C:\WINDOWS\Installer\14b01f.msi');
DeleteFile('C:\Program Files\Common Files\Windows Live\.cache\64559f901c992c7\fssclient_x86.msi');
DeleteFile('C:\Program Files\Common Files\Windows Live\.cache\4bd9a4dc1c971e0\fssclient_x86.msi');
DeleteFile('C:\WINDOWS\Tasks\A78034C191D3AFC1.job');
BC_DeleteFile('C:\WINDOWS\Tasks\A78034C191D3AFC1.job');
BC_DeleteFile('C:\WINDOWS\Installer\14b01f.msi');
BC_DeleteFile('C:\Program Files\Common Files\Windows Live\.cache\64559f901c992c7\fssclient_x86.msi');
BC_DeleteFile('C:\Program Files\Common Files\Windows Live\.cache\4bd9a4dc1c971e0\fssclient_x86.msi');
BC_ImportquarantineList;
BC_Activate;
ExecuteSysClean;
RebootWindows(true);
end.
After restart, upload quarantine via the link http://virusinfo.info/upload_virus_eng.php?tid=56877 as it's described in the app.3 of the rules and make new logs.