begin
ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true);
if not IsWOW64
then
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
end;
RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','Ammodit');
ExecuteFile('schtasks.exe', '/delete /TN "Ammodit" /F', 0, 15000, true);
BC_Activate;
ExecuteSysClean;
ExecuteWizard('SCU', 2, 3, true);
BC_ImportALL;
RebootWindows(true);
end.
begin
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
end.
O4 - HKCU\..\Run: [Ammodit] = C:\Windows\explorer.exe http://exinariuminix.info
O22 - Task: Ammodit - C:\Windows\system32\cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Ammodit /t REG_SZ /d "explorer.exe http://exinariuminix.info"
Start::
CreateRestorePoint:
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TrayIt!.lnk => C:\Windows\pss\TrayIt!.lnk.CommonStartup
EmptyTemp:
Reboot:
End::
Желателен, по нему готовятся рекомендации по закрытию уязвимостей в системеЛог SecurityCheck нужен?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?