устанавливаются левые программы

[Кирилл Перхуров]

устанавливаются левые программы, при загрузке ос не загружается рабочий стол

[Info_bot]

Уважаемый(ая) Кирилл Перхуров, спасибо за обращение на наш форум!

Помощь при заражении комьютера на VirusInfo.Info оказывается абсолютно бесплатно. Хелперы, в самое ближайшее время, ответят на Ваш запрос. Для оказания помощи необходимо предоставить логи сканирования утилитами АВЗ и HiJackThis, подробнее можно прочитать в правилах оформления запроса о помощи.

Если наш сайт окажется полезен Вам и у Вас будет такая возможность - пожалуйста поддержите проект.

[thyrex]

Выполните скрипт в AVZ

Код:

begin
ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.' + #13#10 + 'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.');
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
 then
  begin
   SearchRootkit(true, true);
   SetAVZGuardStatus(True);
  end;
 QuarantineFile('C:\Users\sd\appdata\local\smartweb\__u.exe','');
 QuarantineFile('C:\Users\sd\appdata\local\smartweb\swhk.dll','');
 QuarantineFile('C:\Users\sd\AppData\Roaming\qHI1HZfrbkDXMMEY6aqOc.exe','');
 DelCLSID('{63332668-8CE1-445D-A5EE-25929176714E}');
 DelBHO('{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}');
 DelBHO('{FB4F6285-4C32-49F2-950F-A5998F9CEC6C}');
 DelBHO('{6E727987-C8EA-44DA-8749-310C0FBE3C3E}');
 QuarantineFile('C:\IQIYI Video\Common\Accelerator\IEHelper.dll','');
 QuarantineFile('C:\Program Files (x86)\Torrent Search\IEEF\ndEdYt5DKc.dll','');
 QuarantineFile('C:\iexplore.bat','');
 QuarantineFile('C:\Users\sd\AppData\Local\kometa.bat','');
 QuarantineFile('C:\Users\sd\AppData\Local\gmsd_ru_005010075\upgmsd_ru_005010075.exe','');
 QuarantineFile('C:\Users\sd\AppData\Local\SmartWeb\SmartWebHelper.exe','');
 QuarantineFile('C:\Program Files (x86)\gmsd_ru_005010075\gmsd_ru_005010075.exe','');
 QuarantineFile('C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe','');
 QuarantineFile('C:\IQIYI Video\Common\QyKernel.exe','');
 SetServiceStart('TAOKernelDriver', 4);
 DeleteService('TAOKernelDriver');
 SetServiceStart('TFsFlt', 4);
 DeleteService('TFsFlt');
 SetServiceStart('TSSysKit', 4);
 DeleteService('TSSysKit');
 SetServiceStart('wsfd_1_10_0_19', 4);
 DeleteService('wsfd_1_10_0_19');
 DeleteService('TSDefenseBt');
 SetServiceStart('TAOAccelerator', 4);
 DeleteService('TAOAccelerator');
 SetServiceStart('QQSysMonX64', 4);
 DeleteService('QQSysMonX64');
 SetServiceStart('QMUdisk', 4);
 DeleteService('TAOFrame');
 DeleteService('globalUpdatem');
 DeleteService('globalUpdate');
 QuarantineFile('C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe','');
 SetServiceStart('WdsManPro', 4);
 DeleteService('WdsManPro');
 SetServiceStart('vyzeminu', 4);
 DeleteService('vyzeminu');
 SetServiceStart('QQPCRTP', 4);
 DeleteService('QQPCRTP');
 SetServiceStart('IHProtect Service', 4);
 DeleteService('IHProtect Service');
 SetServiceStart('comyninu', 4);
 DeleteService('comyninu');
 QuarantineFile('C:\Windows\system32\drivers\wsfd_1_10_0_19.sys','');
 TerminateProcessByName('c:\programdata\ewdsmanproe\wdsmanpro.exe');
 QuarantineFile('c:\programdata\ewdsmanproe\wdsmanpro.exe','');
 TerminateProcessByName('c:\users\sd\appdata\local\gmsd_ru_005010075\upgmsd_ru_005010075.exe');
 QuarantineFile('c:\users\sd\appdata\local\gmsd_ru_005010075\upgmsd_ru_005010075.exe','');
 QuarantineFile('c:\program files (x86)\sfk\ssfk.exe','');
 QuarantineFile('C:\Program Files (x86)\SFK\SFKEX64.exe','');
 TerminateProcessByName('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qqpctray.exe');
 TerminateProcessByName('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qqpcrtp.exe');
 TerminateProcessByName('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qqpcrealtimespeedup.exe');
 TerminateProcessByName('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\plugins\qmnetmon\qqpcnetflow.exe');
 TerminateProcessByName('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qmchext.exe');
 TerminateProcessByName('c:\program files (x86)\minilite\protectservice.exe');
 QuarantineFile('c:\program files (x86)\minilite\protectservice.exe','');
 TerminateProcessByName('c:\program files (x86)\c641df40-1437756232-81e4-21cd-086266e1f9d9\knsla342.tmp');
 QuarantineFile('c:\program files (x86)\c641df40-1437756232-81e4-21cd-086266e1f9d9\knsla342.tmp','');
 TerminateProcessByName('c:\program files (x86)\c641df40-1437756232-81e4-21cd-086266e1f9d9\hnsc2e93.tmp');
 QuarantineFile('c:\program files (x86)\c641df40-1437756232-81e4-21cd-086266e1f9d9\hnsc2e93.tmp','');
 DeleteFile('c:\program files (x86)\c641df40-1437756232-81e4-21cd-086266e1f9d9\hnsc2e93.tmp','32');
 DeleteFile('c:\program files (x86)\c641df40-1437756232-81e4-21cd-086266e1f9d9\knsla342.tmp','32');
 DeleteFile('c:\program files (x86)\minilite\protectservice.exe','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qmchext.exe','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\plugins\qmnetmon\qqpcnetflow.exe','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qqpcrealtimespeedup.exe','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qqpcrtp.exe','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qqpctray.exe','32');
 DeleteFile('c:\users\sd\appdata\local\gmsd_ru_005010075\upgmsd_ru_005010075.exe','32');
 DeleteFile('c:\programdata\ewdsmanproe\wdsmanpro.exe','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\7z.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\AndroidAssistHelper.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\communic.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\DLProtectComm.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\dr.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\GameUpgrade.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\GarbageCleaner.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\GFCustom.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\GFFtsysCustom.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\MemDefrag.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\NetflowMgr.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\oDayProtect.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\plugins\QMBDScanner.dat','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\plugins\QMCloudInter\QMCloudInter.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\plugins\QMHipsEngine.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\plugins\qmiemalrtpplugin\qmiemalrtpplugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\plugins\QMNetMonPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\plugins\QMRepairPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\plugins\sysspeeduprtpplugin\SysSpeedupRtpPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\ProcessManager.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\ptrate.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMAssocScan.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMAVProxy.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMCommon.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMDlder.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMDns.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMEmMat.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMExt.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMFileMon.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMForbiddenWinKey.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMHIPSHeart.dll','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qmhipslogpolicy.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMHIPSPolicyEng.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMHIPSService.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMIpc.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMMain.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMNetworkMgr.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMRtpCheck.dll','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qmrtpcontroller.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMRtpDLL.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMSafeBoxHelperDll.dll','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qmscripthost.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMSkinMgr.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMSpeedupPlugin\SpeedupRocket\SpeedupRocket.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMSSO\Bin\SSOCommon.DLL','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMSSO\Bin\SSOLUIControl.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMSSO\Bin\SSOPlatform.dll','32');
 DeleteFile('c:\program files (x86)\tencent\qqpcmgr\10.11.16600.237\qmsysrepprov.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMAutoTaskPlugin\QMAutoTaskPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMAVTrayPlugin\QMAVTrayPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMBJTrayPlugin\QMBJTrayPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMClinicTrayPlugin\QMClinicTrayPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMDnsMonitor\QMDnsMonitor.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMHwFloatWnd\QMHwFloatWnd.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMKCheck\QMKCheck.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMLogCtrl\QMLogCtrl.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMMobileTrayPlugin\QMMobileTrayPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMNewsTips\QMNewsTips.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMTrayPlugin\QMPerfCtrl\QMPerf.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMPerfCtrl\QMPerfCtrl.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMPreDownload\QMPreDownload.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMQQLoginPlugin\QMQQLoginPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMRtpPlugin\QMRtpPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMSoftPlugin\QMSoftPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMSpecTips\QMSpecTips.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMStartupMonitorNotify\QMStartupMonitorNotify.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMSXTrayPlugin\QMSXTrayPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMTPIEStartPage\QMTPIEStartPage.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMTpkTrayPlugin\QMTpkTrayPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMTrojanPlugin\QMTrojanPlugin.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMUDiskMgr\QMUDiskMgr.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\qmtrayplugin\QMUpdateModule\QMUpdateModule.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMUdisk64.sys','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QQSysMonX64.sys','32');
 DeleteFile('C:\Windows\system32\Drivers\TAOAccelerator64.sys','32');
 DeleteFile('C:\Windows\System32\Drivers\TAOKernel64.sys','32');
 DeleteFile('C:\Windows\system32\Drivers\TFsFltX64.sys','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\TS888x64.sys','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\TSSysKit64.sys','32');
 DeleteFile('C:\Windows\system32\drivers\wsfd_1_10_0_19.sys','32');
 DeleteFile('C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe','32');
 DeleteFile('C:\Windows\system32\Drivers\TAOKernel64.sys','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\TSDefenseBT64.sys','32');
 DeleteFile('C:\IQIYI Video\Common\QyKernel.exe','32');
 RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','HCDNClient');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved','{63332668-8CE1-445D-A5EE-25929176714E}');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved','{CBDECEF7-7A29-4cbf-A009-2673D82C7BF9}');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','QQPCTray');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMContextScan.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMContextScan64.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QMContextUninstall64.dll','32');
 DeleteFile('C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16600.237\QQPCTRAY.EXE','32');
 DeleteFile('C:\Program Files (x86)\baidu\pps.exe','32');
 RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','apphide');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','gmsd_ru_005010075');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','SpaceSoundPro');
 DeleteFile('C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe','32');
 DeleteFile('C:\Program Files (x86)\gmsd_ru_005010075\gmsd_ru_005010075.exe','32');
 DeleteFile('C:\Users\sd\AppData\Local\SmartWeb\SmartWebHelper.exe','32');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','SmartWeb');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\RunOnce','upgmsd_ru_005010075.exe');
 DeleteFile('C:\Users\sd\AppData\Local\gmsd_ru_005010075\upgmsd_ru_005010075.exe','32');
 DeleteFile('C:\Users\sd\AppData\Local\kometa.bat','32');
 DeleteFile('C:\iexplore.bat','32');
 DeleteFile('C:\Program Files (x86)\Torrent Search\IEEF\ndEdYt5DKc.dll','32');
 DeleteFile('C:\IQIYI Video\Common\Accelerator\IEHelper.dll','32');
 DeleteFile('C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe','32');
 DeleteFile('C:\Windows\Tasks\APSnotifierPP1.job','64');
 DeleteFile('C:\Windows\Tasks\APSnotifierPP2.job','64');
 DeleteFile('C:\Windows\Tasks\APSnotifierPP3.job','64');
 DeleteFile('C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job','64');
 DeleteFile('C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job','64');
 DeleteFile('C:\Users\sd\AppData\Roaming\qHI1HZfrbkDXMMEY6aqOc.exe','32');
 DeleteFile('C:\Windows\Tasks\qHI1HZfrbkDXMMEY6aqOc.job','64');
 DeleteFile('C:\Windows\Tasks\Update Service for Torrent Search.job','64');
 DeleteFile('C:\Windows\Tasks\Update Service for Torrent Search2.job','64');
 DeleteFile('C:\Windows\system32\Tasks\APSnotifierPP1','64');
 DeleteFile('C:\Windows\system32\Tasks\APSnotifierPP2','64');
 DeleteFile('C:\Windows\system32\Tasks\APSnotifierPP3','64');
 DeleteFile('C:\Windows\system32\Tasks\globalUpdateUpdateTaskMachineCore','64');
 DeleteFile('C:\Windows\system32\Tasks\globalUpdateUpdateTaskMachineUA','64');
 DeleteFile('C:\Windows\system32\Tasks\Update Service for Torrent Search','64');
 DeleteFile('C:\Windows\system32\Tasks\Update Service for Torrent Search2','64');
 DeleteFile('C:\Users\sd\appdata\local\smartweb\swhk.dll','32');
 DeleteFile('C:\Users\sd\appdata\local\smartweb\__u.exe','32');
 DeleteFile('C:\ProgramData\Tencent\TSVulFw\TSVulFW.DAT','32');
 BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(false);
end.

Будет выполнена перезагрузка компьютера.

Выполните скрипт в AVZ

Код:

begin
CreateQurantineArchive('c:\quarantine.zip');
end.

c:\quarantine.zip пришлите по красной ссылке Прислать запрошенный карантин над первым сообщением в Вашей теме.

Сделайте лог CheckBrowsers' Lnk

Выполните правила ЕЩЕ РАЗ и предоставьте НОВЫЕ логи