Hello,
- Disconnect your PC from network (internet/intranet)
- Disable antivirus, firewall and other memory resident security tools
- Disable System Restore
-Fix with Hijackthis
Код:
O2 - BHO: Barre d'outils ALOT Helper - {14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6} - C:\Program Files\alot\bin\BHO\alotBHO.dll
O3 - Toolbar: Barre d'outils ALOT - {5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} - C:\Program Files\alot\bin\alot.dll
- Execute following script
Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
ClearQuarantine;
QuarantineFile('C:\Program Files\alot\bin\BHO\alotBHO.dll','');
DelBHO('{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}');
DelBHO('{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E}');
DelBHO('{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}');
QuarantineFile('C:\Program Files\alot\bin\alot.dll','');
DeleteFileMask('C:\Program Files\alot\','*.*',true);
DeleteDirectory('C:\Program Files\alot\');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
SetAVZPMStatus(True);
RebootWindows(true);
end.
If the system after reboot would try to install any unknown hardware, abort the installtion and remove unknown hardware over hardware manager
After reboot:
execute following script
Код:
begin
CreateQurantineArchive('C:\quarantine.zip');
end.
- Upload the C:\quarantine.zip over the link Upload quarantined files on the top of this page.
- Clean Temp-Maps, Cache of Browsers, Recycler. Use Windows service tool cleanmgr or CCleaner or ClearProg
- Make new logs and attach them to the new posting.