1. Please, disable System Restore and antivirus (if you have).
2. Execute this script in AVPTool:
Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('c:\users\rafa\appdata\local\oqqbauu.exe','');
TerminateProcessByName('c:\users\rafa\appdata\local\oqqbauu.exe');
DeleteFile('c:\users\rafa\appdata\local\oqqbauu.exe');
RegKeyParamDel('HKEY_USERS','S-1-5-21-3065195921-3120492818-1084049148-1000\Software\Microsoft\Windows\CurrentVersion\Run','oqqbauu');
BC_ImportDeletedList;
ExecuteSysClean;
ExecuteRepair(6);
BC_Activate;
RebootWindows(true);
end.
3. After reboot execute this script in AVPTool:
Код:
begin
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
end.
Upload file quarantine.zip, by link http://virusinfo.info/upload_virus.php?tid=86569
4. Make a new log of AVPTool.