+ещё вылетает предупреждение, что есть модифицированный win32\wigon.
трафик улетает оч быстро, да и комп что-т слегка начал подвисать!
Хэлп ми, плиз!!!
Printable View
+ещё вылетает предупреждение, что есть модифицированный win32\wigon.
трафик улетает оч быстро, да и комп что-т слегка начал подвисать!
Хэлп ми, плиз!!!
выполните скрипт ....
[code]
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('D:\WINDOWS\iexplorer.exe','');
DeleteService('Yfk84');
DeleteService('Yfk73');
DeleteService('Yfk51');
DeleteService('Yfk27');
DeleteService('Yfk16');
DeleteService('Yej62');
DeleteService('Yej40');
DeleteService('Yej27');
DeleteService('Yej16');
DeleteService('Yej05');
DeleteService('Xej05');
DeleteService('Xdi84');
DeleteService('Xdi62');
DeleteService('Xdi38');
DeleteService('Xdi27');
DeleteService('Wdi84');
DeleteService('Wdi27');
DeleteService('Wch84');
DeleteService('Wch62');
DeleteService('Wch16');
DeleteService('Wch05');
DeleteService('Vch51');
DeleteService('Vch40');
DeleteService('Vch16');
DeleteService('Vch05');
DeleteService('Vbg51');
DeleteService('Vbg27');
DeleteService('Ubg84');
DeleteService('Ubg51');
DeleteService('Ubg40');
DeleteService('Uaf84');
DeleteService('Uaf73');
DeleteService('Uaf51');
DeleteService('Uaf38');
DeleteService('Uaf16');
DeleteService('Tye51');
DeleteService('Tye40');
DeleteService('Taf84');
DeleteService('Taf73');
DeleteService('Taf38');
DeleteService('Sye51');
DeleteService('Sye05');
DeleteService('Sxd85');
DeleteService('Sxd38');
DeleteService('Sxd05');
DeleteService('Rxd73');
DeleteService('Rxd62');
DeleteService('Rxd27');
DeleteService('Rxd05');
DeleteService('Rwc73');
DeleteService('Rwc51');
DeleteService('Rwc30');
DeleteService('Qwc73');
DeleteService('Qwc38');
DeleteService('Qvb84');
DeleteService('Qvb62');
DeleteService('Qvb40');
DeleteService('Qvb38');
DeleteService('Qvb27');
DeleteService('Pvb40');
DeleteService('Pvb38');
DeleteService('Pua51');
DeleteService('Pua05');
DeleteService('Oua73');
DeleteService('Oua62');
DeleteService('Oua27');
DeleteService('Oua05');
DeleteService('Oty30');
DeleteService('Oty27');
DeleteService('Ota05');
DeleteService('Nty84');
DeleteService('Nty73');
DeleteService('Nty62');
DeleteService('Nty40');
DeleteService('Nty27');
DeleteService('Nty05');
DeleteService('Nsx84');
DeleteService('Nsx40');
DeleteService('Msx84');
DeleteService('Msx62');
DeleteService('Msx51');
DeleteService('Mrx38');
DeleteService('Msx05');
DeleteService('Mrx05');
DeleteService('Mrw62');
DeleteService('Mrw51');
DeleteService('Mrw40');
DeleteService('Mrw27');
DeleteService('Mrw16');
DeleteService('Lrw62');
DeleteService('Lrw51');
DeleteService('Lrw40');
DeleteService('Lrw38');
DeleteService('Lrw27');
DeleteService('Lqv62');
DeleteService('Lqv16');
DeleteService('Iot27');
DeleteService('Iot51');
DeleteService('Iot62');
DeleteService('Iot84');
DeleteService('Jot16');
DeleteService('Jot51');
DeleteService('Jpu05');
DeleteService('Jpu38');
DeleteService('Jpu40');
DeleteService('Jpu62');
DeleteService('Jpu84');
DeleteService('Kpu27');
DeleteService('Kpu73');
DeleteService('Kpu84');
DeleteService('Kqv16');
DeleteService('Kqv27');
DeleteService('Kqv84');
DeleteService('Ins38');
DeleteService('Ins40');
DeleteService('Ins51');
DeleteService('Ins62');
DeleteService('Ins73');
DeleteService('Ins84');
DeleteService('Ejo62');
DeleteService('Fkp05');
DeleteService('Fkp73');
DeleteService('Flq05');
DeleteService('Flq16');
DeleteService('Flq62');
DeleteService('Glq38');
DeleteService('Glq40');
DeleteService('Gmr38');
DeleteService('Gmr51');
DeleteService('Hmr40');
DeleteService('Hmr62');
DeleteService('Hns05');
DeleteService('Hns27');
DeleteService('Hns38');
DeleteService('Hns62');
DeleteService('Hns84');
DeleteService('Djo62');
DeleteService('Djo40');
DeleteService('Din38');
DeleteService('Din16');
DeleteService('Din05');
DeleteService('Cin63');
DeleteService('Cin38');
DeleteService('Cin27');
DeleteService('Cin05');
DeleteService('Chm84');
DeleteService('Chm62');
DeleteService('Bgl05');
DeleteService('Bgl16');
DeleteService('Bgl38');
DeleteService('Bgl40');
DeleteService('Bgl84');
DeleteService('Bhm51');
DeleteService('Agl84');
DeleteService('Afk16');
DeleteService('Afk27');
DeleteService('Afk38');
DeleteService('Afk73');
DeleteService('Agl05');
DeleteService('Agl16');
DeleteService('Agl27');
DeleteService('Ubg73');
QuarantineFile('D:\WINDOWS\System32\Drivers\Ubg73.sys','');
QuarantineFile('D:\WINDOWS\system32\cssrss.exe','');
QuarantineFile('D:\WINDOWS\System32\Cpl32ver.exe','');
QuarantineFile('D:\WINDOWS\system32\braviax.exe','');
QuarantineFile('D:\Program Files\Internet Explorer\SETUPAPI.dll','');
TerminateProcessByName('d:\windows\msauc.exe');
QuarantineFile('d:\windows\msauc.exe','');
TerminateProcessByName('d:\windows\system32\cssrss.exe');
QuarantineFile('d:\windows\system32\cssrss.exe','');
TerminateProcessByName('d:\windows\system32\cpl32ver.exe');
TerminateProcessByName('d:\windows\system32\braviax.exe');
QuarantineFile('d:\windows\system32\cpl32ver.exe','');
QuarantineFile('d:\windows\system32\braviax.exe','');
DeleteFile('d:\windows\system32\braviax.exe');
DeleteFile('d:\windows\system32\cpl32ver.exe');
DeleteFile('d:\windows\system32\cssrss.exe');
DeleteFile('d:\windows\msauc.exe');
DeleteFile('D:\WINDOWS\system32\braviax.exe');
DeleteFile('D:\WINDOWS\System32\Cpl32ver.exe');
DeleteFile('D:\WINDOWS\system32\cssrss.exe');
DeleteFile('D:\WINDOWS\System32\Drivers\Ubg73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Afk16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Afk27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Afk38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Afk73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Agl05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Agl16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Agl27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Agl84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Bgl05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Bgl16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Bgl38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Bgl40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Bgl84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Bhm51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Chm62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Chm84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Cin05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Cin27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Cin38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Cin63.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Din05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Din16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Din38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Din62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Djo40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Djo62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ejo62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ekp40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ekp73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Fkp05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Fkp73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Flq05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Flq16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Flq40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Flq62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Glq05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Glq38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Glq40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Gmr38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Gmr51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Hmr16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Hmr40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Hmr62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Hns05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Hns27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Hns38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Hns62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Hns84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ins38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ins40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ins51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ins62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ins84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Iot27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Iot51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Iot62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Iot84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jot16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jot51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jpu38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jpu40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jpu51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jpu62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jpu84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Kpu27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Kpu73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Kqv16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Kqv27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Kqv51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Kqv84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Lqv16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Lqv62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Lrw27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Lrw38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Lrw40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Lrw51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Lrw62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Mrw16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Mrw40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Mrw51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Mrw62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Mrx05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Mrx38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Msx05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Msx51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Msx62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Msx84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nsx40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nsx84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nty05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nty27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nty40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nty62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nty73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nty84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ota05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Oty27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Oty30.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Oua05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Oua27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Oua62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Oua73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Pua05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Pua51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Pvb38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Pvb40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Qvb27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Qvb38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Qvb40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Qvb62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Qvb84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Qwc38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Qwc73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Rwc30.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Rwc51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Rxd05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Rxd73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Sxd05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Sxd38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Sxd85.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Sye51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Sye62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Taf38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Taf73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Tye40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Tye51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Uaf16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Uaf38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Uaf51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Uaf73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Uaf84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ubg40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ubg51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ubg84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Vbg27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Vbg51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Vch05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Vch16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Vch40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Vch51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Wch05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Wch16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Wch62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Wdi27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Wdi84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Xdi27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Xdi38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Xdi84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Xej05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Xej27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yej27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yej40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yej62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yfk16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yfk27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yfk51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yfk73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yfk84.sys');
DeleteFile('D:\WINDOWS\system32\amvo.exe');
DeleteFile('D:\WINDOWS\msauc.exe');
DeleteFile('D:\WINDOWS\iexplorer.exe');
BC_ImportDeletedList;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
[/code]
пришлите карантин согласно приложения 3 правил ...
повторите логи ...
файл закачал!
пока что всё работает))
спасиб огромное, вы молодцы!
выполните скрипт
[code]
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('D:\WINDOWS\system32\amvo.exe','');
BC_DeleteSvc('Yfk05');
BC_DeleteSvc('Yej16');
BC_DeleteSvc('Yej05');
BC_DeleteSvc('Xdi62');
BC_DeleteSvc('Wch84');
BC_DeleteSvc('Vch73');
BC_DeleteSvc('Vch38');
BC_DeleteSvc('Ubg05');
BC_DeleteSvc('Uaf40');
BC_DeleteSvc('Taf84');
BC_DeleteSvc('Taf40');
BC_DeleteSvc('Sye05');
BC_DeleteSvc('Sxd40');
BC_DeleteSvc('Rxd62');
BC_DeleteSvc('Rxd27');
BC_DeleteSvc('Rwc73');
BC_DeleteSvc('Rwc41');
BC_DeleteSvc('Qvb16');
BC_DeleteSvc('Pvb51');
BC_DeleteSvc('Oty05');
BC_DeleteSvc('Nty51');
BC_DeleteSvc('Nty38');
BC_DeleteSvc('Mrx84');
BC_DeleteSvc('Mrw27');
BC_DeleteSvc('Lqv73');
BC_DeleteSvc('Kpu84');
BC_DeleteSvc('Kpu62');
BC_DeleteSvc('Jpu16');
BC_DeleteSvc('Jpu05');
BC_DeleteSvc('Iot40');
BC_DeleteSvc('Iot16');
BC_DeleteSvc('Ins73');
BC_DeleteSvc('Ins16');
BC_DeleteSvc('Gmr40');
BC_DeleteSvc('Gmr27');
BC_DeleteSvc('Glq73');
BC_DeleteSvc('Glq62');
BC_DeleteSvc('Fkp40');
BC_DeleteSvc('Ekp62');
BC_DeleteSvc('Ekp38');
BC_DeleteSvc('Djo51');
BC_DeleteSvc('Djo27');
BC_DeleteSvc('Djo05');
BC_DeleteSvc('Cin84');
BC_DeleteSvc('Chm51');
BC_DeleteSvc('Chm40');
BC_DeleteSvc('Chm27');
BC_DeleteSvc('Chm16');
BC_DeleteSvc('Chm05');
BC_DeleteSvc('Bhm62');
BC_DeleteSvc('Bhm27');
BC_DeleteSvc('Agl62');
BC_DeleteSvc('Afk84');
QuarantineFile('D:\Program Files\Internet Explorer\SETUPAPI.dll','');
DeleteFile('D:\Program Files\Internet Explorer\SETUPAPI.dll');
DeleteFile('D:\WINDOWS\System32\Drivers\Afk84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Agl62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Bhm27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Bhm62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Chm05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Chm16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Chm27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Chm40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Chm51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Djo05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Djo27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Djo51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ekp38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ekp62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Fkp40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Glq62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Glq73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Gmr27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Gmr40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ins16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ins73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Iot16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Iot40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jpu05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Jpu16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Kpu62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Kpu84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Mrw27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Mrx84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nty38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Nty51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Oty05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Pvb51.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Qvb16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Rwc41.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Rwc73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Rxd27.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Rxd62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Sxd40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Sye05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Taf40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Taf84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Uaf40.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Ubg05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Vch38.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Vch73.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Wch84.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Xdi62.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yej05.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yej16.sys');
DeleteFile('D:\WINDOWS\System32\Drivers\Yfk05.sys');
DeleteFile('D:\WINDOWS\system32\amvo.exe');
BC_ImportDeletedList;
ExecuteRepair(6);
ExecuteRepair(8);
ExecuteRepair(9);
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
[/code]
пришлите карантин согласно приложения 3 правил ...
повторите логи ...
Статистика проведенного лечения:
[LIST][*]Получено карантинов: [B]1[/B][*]Обработано файлов: [B]32[/B][*]В ходе лечения обнаружены вредоносные программы:
[LIST=1][*] d:\\program files\\internet explorer\\setupapi.dll - [B]Trojan-Downloader.Win32.Kset.h[/B] (DrWEB: Trojan.PWS.Webmonier.30)[*] d:\\windows\\iexplorer.exe - [B]Trojan.Win32.Buzus.vtg[/B] (DrWEB: Trojan.DownLoad.4201)[*] d:\\windows\\msauc.exe - [B]Trojan.Win32.Buzus.uxd[/B] (DrWEB: Trojan.MulDrop.18658)[*] d:\\windows\\system32\\cpl32ver.exe - [B]Trojan.Win32.Crypt.mv[/B] (DrWEB: BackDoor.Bulknet.233)[*] d:\\windows\\system32\\cssrss.exe - [B]Backdoor.Win32.Agent.qed[/B] (DrWEB: Trojan.DownLoad.4184)[/LIST][/LIST]