simply god
Постоянный участник
- Сообщения
- 136
- Реакции
- 8
begin
QuarantineFile('C:\Users\super\AppData\Local\SystemDir\nethost.exe', '');
QuarantineFileF('C:\Users\super\AppData\Local\SystemDir\', '*.exe, *.dll, *.sys, *.bat, *.vbs, *.js', true, '', 0, 0);
DeleteFile('C:\Users\super\AppData\Local\SystemDir\nethost.exe', '32');
DeleteFile('C:\Users\super\Favorites\Links\Интернет.url', '32');
DeleteFile('C:\Users\super\Favorites\OVGORSKIY.url', '32')
DeleteFileMask('C:\Users\super\AppData\Local\SystemDir', '*', true);
DeleteDirectory('C:\Users\super\AppData\Local\SystemDir');
DelBHO('{8E8F97CD-60B5-456F-A201-73065652D099}');
ExecuteFile('schtasks.exe', '/delete /TN "nethost task" /F', 0, 15000, true);
RegKeyParamDel('HKEY_CURRENT_USER', 'Software\Microsoft\Windows\CurrentVersion\Run', 'aesiqlipvu');
ExecuteSysClean;
ExecuteRepair(3);
RebootWindows(true);
end.
begin
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
end.
CreateRestorePoint:
FF Homepage: hxxp://vyitikho.ru/?utm_content=ba4af385bfafccf4846ffc58862c5853&utm_source=startpm&utm_term=ECAC407760535258C1054FFC13DA4FE0
CHR HKLM-x32\...\Chrome\Extension: [ilamgbdaebkbpkkmfmmfbnaamkhijdek] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ofdgafmdegfkhfdfkmllfefmcmcjllec] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ilamgbdaebkbpkkmfmmfbnaamkhijdek] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ofdgafmdegfkhfdfkmllfefmcmcjllec] - hxxps://clients2.google.com/service/update2/crx
var
LogPath : string;
ScriptPath : string;
begin
LogPath := GetAVZDirectory + 'log\avz_log.txt';
if FileExists(LogPath) Then DeleteFile(LogPath);
ScriptPath := GetAVZDirectory +'ScanVuln.txt';
if DownloadFile('http://dataforce.ru/~kad/ScanVuln.txt', ScriptPath, 1) then ExecuteScript(ScriptPath) else begin
if DownloadFile('http://dataforce.ru/~kad/ScanVuln.txt', ScriptPath, 0) then ExecuteScript(ScriptPath) else begin
ShowMessage('Невозможно загрузить скрипт AVZ для обнаружения наиболее часто используемых уязвимостей!');
exit;
end;
end;
if FileExists(LogPath) Then ExecuteFile('notepad.exe', LogPath, 1, 0, false)
end.
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?