Может вирусы, но нод молчит.
Printable View
Может вирусы, но нод молчит.
Пофиксите
[code]
O20 - Winlogon Notify: WinCtrl32 - WinCtrl32.dll (file missing)
[/code]
Выполните скрипт в AVZ
[code]
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
DeleteFile('C:\WINDOWS\System32\Drivers\Winaf40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winbg84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winbh05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winbh51.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winch38.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winch40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Wincj05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Windi05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Windi62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Windj27.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Windj73.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winej05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winej84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winel05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winfk40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winfk73.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Wingl16.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Wingl51.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Wingm62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Wingm73.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winhm51.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winhn16.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winhn27.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winin62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winio05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winio73.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winjo05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winjo62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winjp05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winkp62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winkq28.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winlq40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winlq84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winlr38.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winmr40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winmr51.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winmr84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winms62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winns51.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winns73.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winnt84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winot62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winpu05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winpu38.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winpv40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winqv27.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winqw40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winqw84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winrw38.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winrw84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winrx62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winry27.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winsx16.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winsx62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winta30.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winub40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winub73.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winvb27.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winvb62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winvc40.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winvc62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winwc84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winwd38.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winwd84.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winxd16.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winxd27.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winxd51.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winxd62.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winxd73.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winye05.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winyf38.sys');
DeleteFile('C:\WINDOWS\System32\Drivers\Winyf51.sys');
DeleteFile('C:\WINDOWS\System32\WinCtrl32.dll');
BC_ImportDeletedList;
BC_DeleteSvc('Winyf51');
BC_DeleteSvc('Winyf38');
BC_DeleteSvc('Winye05');
BC_DeleteSvc('Winxd73');
BC_DeleteSvc('Winxd62');
BC_DeleteSvc('Winxd51');
BC_DeleteSvc('Winxd27');
BC_DeleteSvc('Winxd16');
BC_DeleteSvc('Winwd84');
BC_DeleteSvc('Winwd38');
BC_DeleteSvc('Winwc84');
BC_DeleteSvc('Winvc62');
BC_DeleteSvc('Winvc40');
BC_DeleteSvc('Winvb62');
BC_DeleteSvc('Winvb27');
BC_DeleteSvc('Winub73');
BC_DeleteSvc('Winub40');
BC_DeleteSvc('Winta30');
BC_DeleteSvc('Winsx62');
BC_DeleteSvc('Winsx16');
BC_DeleteSvc('Winry27');
BC_DeleteSvc('Winrx62');
BC_DeleteSvc('Winrw84');
BC_DeleteSvc('Winrw38');
BC_DeleteSvc('Winqw84');
BC_DeleteSvc('Winqw40');
BC_DeleteSvc('Winqv27');
BC_DeleteSvc('Winpv40');
BC_DeleteSvc('Winpu38');
BC_DeleteSvc('Winpu05');
BC_DeleteSvc('Winot62');
BC_DeleteSvc('Winnt84');
BC_DeleteSvc('Winns73');
BC_DeleteSvc('Winns51');
BC_DeleteSvc('Winms62');
BC_DeleteSvc('Winmr84');
BC_DeleteSvc('Winmr51');
BC_DeleteSvc('Winmr40');
BC_DeleteSvc('Winlr38');
BC_DeleteSvc('Winlq84');
BC_DeleteSvc('Winlq40');
BC_DeleteSvc('Winkq28');
BC_DeleteSvc('Winkp62');
BC_DeleteSvc('Winjp05');
BC_DeleteSvc('Winjo62');
BC_DeleteSvc('Winjo05');
BC_DeleteSvc('Winio73');
BC_DeleteSvc('Winio05');
BC_DeleteSvc('Winin62');
BC_DeleteSvc('Winhn27');
BC_DeleteSvc('Winhn16');
BC_DeleteSvc('Winhm51');
BC_DeleteSvc('Wingm73');
BC_DeleteSvc('Wingm62');
BC_DeleteSvc('Wingl51');
BC_DeleteSvc('Wingl16');
BC_DeleteSvc('Winfk73');
BC_DeleteSvc('Winfk40');
BC_DeleteSvc('Winel05');
BC_DeleteSvc('Winej84');
BC_DeleteSvc('Winej05');
BC_DeleteSvc('Windj73');
BC_DeleteSvc('Windj27');
BC_DeleteSvc('Windi62');
BC_DeleteSvc('Windi05');
BC_DeleteSvc('Wincj05');
BC_DeleteSvc('Winch40');
BC_DeleteSvc('Winch38');
BC_DeleteSvc('Winbh51');
BC_DeleteSvc('Winbh05');
BC_DeleteSvc('Winbg84');
BC_DeleteSvc('Winaf40');
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
[/code]
Логи повторите.