mm1

[marcelomarcelus]

this is my first time with you.
thanks

[Numb]

Hello.
Execute the script:

Код:

begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
 QuarantineFile('C:\Arquivos de programas\AskBarDis\bar\bin\askBar.dll','');
 QuarantineFile('C:\Arquivos de programas\Puxa Rбpido\IEBHO.DLL','');
 QuarantineFile('C:\WINDOWS\system32\drivers\sysdrv32.sys','');
 QuarantineFile('C:\WINDOWS\system32\Drivers\adfs.sys','');
 QuarantineFile('c:\tucan\tucan.exe','');
 DeleteFile('C:\WINDOWS\system32\drivers\sysdrv32.sys');
 BC_DeleteFile('C:\WINDOWS\system32\drivers\sysdrv32.sys');
 DeleteFile('C:\Arquivos de programas\Puxa Rбpido\IEBHO.DLL');
 BC_DeleteFile('C:\Arquivos de programas\Puxa Rбpido\IEBHO.DLL');
 DeleteFile('C:\Arquivos de programas\AskBarDis\bar\bin\askBar.dll');
 BC_DeleteFile('C:\Arquivos de programas\AskBarDis\bar\bin\askBar.dll');
 DelBHO('{3041d03e-fd4b-44e0-b742-2d9b88305f98}');
 DelBHO('{201f27d4-3704-41d6-89c1-aa35e39143ed}');
 DelBHO('{6EF05952-B48D-4944-AA91-57A6A1A48EF8}');
 DeleteService('sysdrv32');
 BC_DeleteSvc('sysdrv32');
BC_ImportquarantineList;
BC_Activate;
ExecuteSysClean;
RebootWindows(true);
end.

After restart, execute the second script:

Код:

begin
CreateQurantineArchive('c:\quarantine.zip');
end.

Upload the file c:\quarantine.zip via the link http://virusinfo.info/upload_virus_eng.php?tid=55087 and make new logs. You'd better make 3 logs as it's described in the rules of "Help me!" section