Hello.
Execute the script :
Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
TerminateProcessByName('c:\windows\system32\wmisrpc.exe');
QuarantineFile('C:\Program Files\MSS_II_Box\ServiceTool\box_service_tool_1.14.exe','');
QuarantineFile('C:\Program Files\MSS_II_Box\ODM\ODM_1.14.exe','');
QuarantineFile('C:\Program Files\MSS_II_Box\MSS\MSS_1.26.exe','');
QuarantineFile('C:\Program Files\Gsm Hard Library\Gsm Hard Library by Blackattack.exe','');
QuarantineFile('C:\WINDOWS\system32\Drivers\mssbox.sys','');
QuarantineFile('C:\WINDOWS\system32\DRIVERS\Spider.sys','');
QuarantineFile('C:\WINDOWS\system32\Drivers\msctakml.sys','');
TerminateProcessByName('c:\windows\system32\wmisrpc.exe');
QuarantineFile('c:\windows\system32\wmisrpc.exe','');
SetServiceStart('msctakml', 4);
DeleteFile('c:\windows\system32\wmisrpc.exe');
BC_DeleteFile('c:\windows\system32\wmisrpc.exe');
DeleteFile('C:\WINDOWS\system32\Drivers\msctakml.sys');
BC_DeleteFile('C:\WINDOWS\system32\Drivers\msctakml.sys');
DeleteService('msctakml');
BC_DeleteSvc('msctakml');
BC_ImportquarantineList;
BC_Activate;
ExecuteSysClean;
RebootWindows(true);
end.
After restart, execute the second script:
Код:
begin
createqurantinearchive('c:\quarantine.zip');
end.
After that, upload the file c:\quarantine.zip via the link http://virusinfo.info/upload_virus_eng.php?tid=61355 and make new logs. You'd better make all the 3 logs as it's described in the rules.