new
Printable View
new
1. Please, disable System Restore and antivirus (if you have).
2. Execute this script in AVPTool:
[CODE]begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
DeleteService('abp470n5');
QuarantineFile('d:\documents and settings\arpit\application data\system\svchost.exe','');
TerminateProcessByName('d:\documents and settings\arpit\application data\system\svchost.exe');
DeleteFile('d:\documents and settings\arpit\application data\system\svchost.exe');
DeleteFile('D:\WINDOWS\system32\drivers\hokgqn.sys');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','svchost');
RegKeyParamDel('HKEY_USERS','S-1-5-21-1957994488-1214440339-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run','svchost');
BC_ImportDeletedList;
ExecuteSysClean;
ExecuteRepair(10);
ExecuteRepair(17);
BC_Activate;
RebootWindows(true);
end.[/CODE]
3. After reboot execute this script in AVPTool:
[CODE]begin
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
end.
[/CODE]
Upload file quarantine.zip, by link [url]http://virusinfo.info/upload_virus.php?tid=82748[/url]
4. Make a new log of AVPTool.