Выполните в AVZ следующий скрипт (avz-Файл-Выполнить скрипт):
Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
TerminateProcessByName('c:\windows\system32\xp-6a0d3cd7.exe');
TerminateProcessByName('c:\documents and settings\admin\easddjaer8.exe');
DeleteFile('c:\documents and settings\admin\easddjaer8.exe');
DeleteFile('c:\windows\system32\xp-6a0d3cd7.exe');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\E_4\com.run');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\E_4\dp1.fne');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\E_4\eAPI.fne');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\E_4\internet.fne');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\E_4\krnln.fnr');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\E_4\RegEx.fnr');
DeleteFile('C:\DOCUME~1\Admin\LOCALS~1\Temp\E_4\shell.fne');
DeleteFile('C:\WINDOWS\system32\XP-6A0D3CD7.EXE');
BC_DeleteFile('C:\Windows\svchast.exe');
DeleteFile('C:\Zolander\Polanda\box.exe');
BC_DeleteFile('C:\DEEP\FREEZ\xob.exe');
BC_DeleteFile('C:\Zolander\Polanda\box.exe');
DeleteFile('c:\Tender\InterPol\NkeY.exe');
BC_DeleteFile('c:\Heroes\FILES\NVeB.exe');
BC_DeleteFile('c:\ALGERIA\FAILED\die.exe');
BC_DeleteFile('C:\SIN\S-2-3-12-ABCDEF7890-01234567890-1688963592-500\Maq.exe');
BC_DeleteFile('C:\MAD\TRACK\mad.exe');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','MSN');
RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','XP-6A0D3CD7');
BC_ImportDeletedList;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
Выполните скрипт N2 и выложите архив virusinfo_syscheck.zip.